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DECLARATION SHOWING REFERENCE'S DI SCLOSURE 
WAS DERIVED FROM APPLICA NT'S OWN WORK 



We hereby declare that we are co-inventors of the subject matter 
described in the above-identified patent application. 

We are aware that a publication entitled, "Image-based Installation 
of the Operating System and the Cluster Service Using Automated 
Deployment Services," published on January 1, 2003 and located at the 
link: http://technet2.microsoft.com/WindowsServer/en/library/ba62f36- 
2a9d043d2Q9737-ab50d5b8b71bl033.mspx?mfr=true, has been cited 
against the above-identified patent application. On information and belief, 
the website from which this article originated is a website (Microsoft 
TechNet) that is sponsored by Microsoft Corp., the current assignee of this 
application. The Microsoft TechNet website describes various products 
offered by Microsoft Corp.. 

On information and belief, we hereby declare that the above- 
mentioned article describes our own work as set forth in the above- 
identified patent application. To support this declaration, we submit the 
following facts which are supported by the attached exhibits. In the 
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discussion that follows, various similarities between documents authored 
by the inventors and the reference cited by the Patent Office are identified. 

On information and belief, attached as Exhibit 1 is the publication 
entitled "Image-based Installation of the Operating System and the Cluster 
Service Using Automated Deployment Services" (hereinafter "ADS"). 
The ADS reference has been cited by the Patent Office. 

On information and belief, attached as Exhibit 2 is a document 
entitled "Disclosure Packet" and bearing number 302701.1 entitled 
'Methodology for Task Sequence Scheduling". On information and 
belief, this document pertains to the above-identified patent application 
and was used as part of the scheduling process to schedule a disclosure 
meeting for the subject matter that is the subject of the above-identified 
patent application. The document includes, as attachments, four separate 
documents. Two of these documents are encircled and are entitled 
respectively, "Task Sequence Spec" and "ADS Functional Overview". 
Some similarities between these attached documents and Exhibit 1 are 
discussed below. 

On information and belief, attached as Exhibit 3 is a document 
entitled "Task Sequences Functional Specification". This document 
corresponds to the "Task Sequence Spec" document attached to the 
"Disclosure Packet" (Exhibit 2), 

On information and belief, attached as Exhibit 4 is a document 
entitled "ADS Functional Overview". This document corresponds to the 
"ADS Functional Overview" document attached to the "Disclosure 
Packet" (Exhibit 2). 
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Thfl "ADS Function al Overview" Document 
Starting first with the document entitled "ADS Functional 
Overview" (Exhibit 4), the cover page of this document indicates a 
copyright date of 2001 (first bracket). Three of the present inventors are 
listed respectively on the cover page as "PM Author", "Dev Author", and 
"Test Contact" (second bracket). 

On page 3 of Exhibit 4, this document states that "Microsoft is 
adding an enhancement to the .NET server platform called ADS." (first 
bracket). Additionally, on this page, and bracketed by the second bracket 
designated "A", appears a discussion of two generic operations capabilities 
that ADS will provide. These capabilities are likewise mentioned in 
Exhibit 1 and are set off by the bracket designated "A" on page 1. 

On page 13 of Exhibit 4, and set off by the bracket designated "B'\ 
appears a discussion of imaging support provided by ADS. Specifically, 
this excerpt of text describes capturing and deploying images using 
"sysprep'\ which is part of the Windows Server OPK. On the third page 
of Exhibit 1, and appearing bracketed by a bracket designated "B" appears 
a discussion of how to create a master image. Notice in the discussion that 
the master installation is prepared with the "Sysprep" tool. 

On page 13 of Exhibit 4, and set off by the bracket designated "C" 
is a discussion entitled "Task Sequences". This discussion indicates that a 
task sequence is a sequence of operations to be performed in order. The 
sequence definition is stored in an XML file on the controller. On page 8 
of Exhibit 1 under the heading "Create task sequence file for image 
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employment" and bracketed by a bracket designated "C", appears a 
discussion of how to create a task sequence file for the ADS controller, 
This discussion describes the notion of creating a task sequence which is 
XML file containing a sequence of tasks for a controller to perform. 

Tht. "Task Sequences Functiona l Specification" Document 

Turning attention to the "Task Sequences Functional Specification" 
document (Exhibit 3), such indicates on its cover page that three of the 
inventors were developer authors (indicated in the bracket). 

On page 3 under the table of contents, a section designated 2.1.2.2 
is entitled 'Task sequences and Workflow Overview". In addition, a 
section on page 4 designated 2.1.7 is entitled 'Task sequence 
Implementation". These sections correspond in content to content that 
appears in Exhibit 1 beginning on page 8 under the heading "Create a job 
template for the sequence file". 

On page 6 of Exhibit 3 within the bracket designated "C" appears a 
discussion pertaining to a task sequence. Such corresponds in content to 
the discussion on page 8 of Exhibit I - 

On page 21 of Exhibit 3 appears a discussion the XML schema 
including, at item "D", the task element which includes child elements 
including the command and parameters element (item "E"). This 
corresponds in content with the discussion on page 9 of Exhibit 1 which 
illustrates a sample XML excerpt that includes the task and parameters 
elements designated respectively, at "D" and "E". A discussion of the 
parameters element occurs on page 22 of Exhibit 3. 
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On page 11 of Exhibit 3 appears a discussion, at item *'F" of a job 
template that can be created that refers to the task sequence. This 
corresponds in content with the discussion on page 9 of Exhibit 1 at item 
"F" entitled "Create a job template for the sequence file". 

Based upon the similarities between Exhibits 3 and 4 5 which were 
authored by subsets of the inventors, and Exhibit 1 - the ADS reference 
cited by the Patent Office, as well as other similarities which are not 
specifically identified above, it should be apparent that Exhibit 1 was 
derived from and describes the work of the inventors as set forth in 
Exhibits 3 and 4. 

We further declare that all statements made herein of our own 
knowledge are true and that all statements made on information and belief 
are believed to be true; and further that these statements were made with 
the knowledge that willful false statements and the like so made are 
punishable by fine or imprisonment, or both, under 18 U,S.C. 1001, and 
that such willful false statements may jeopardize the validity of the 
application or any patent issued thereon. 



^ort A. Steeb 
Co-Inventor of Application Serial No. 10/607,054 
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We hereby declare that we are co-inveatcas of the subject matter 
described * 5 >,><><*< t u iplicatkm. 

We are aware that a publication entitled, "Image-based Installation 
of the Operating System and the Cluster Service Using Automated 
Deployment Sendees," published or January 1, 2003 and located at the 
link: http://technei2jnicr^ 

2a9df)43d209737-ab50d5b8b?lbl033.mspx?mtr^e > has been cited 
against the above-identified patent application. On information and belief, 
the website from which this article originated is a website (Microsoft 
TeefaNet) that is sponsored by Microsoft Corp,, the current assignee of tins 
application. The Microsoft TechNet website describes various products 
oifci 1 < 

On information and belief; we hereby declare that the above- 
mentioned article describes our own work as set forth in the above- 
identified patent application, To support this declaration, we submit the 
following facts which are supported by the attached exhibits. In the 



discussion that follows, various similarities between documents authored 
by the inventors and the reference cited by the Patent Office are identified. 

On information and belief, attached as Exhibit- 1 is the publication 
entitled "Image-based Installation of the Operating System and the Clyster 
Service Using Automated Deployment Services" (hereinafter "ADS*). 
The ADS reference has been cited by the Patent Office. 

On information and belief; attached as Exhibit 2 is a document 
entitled "Disclosure Packer and bearing number 30270 LI entided 
"Methodology for Task Sequence Scheduling". On information and 
belief; this document pertains to the above-identified patent application 
and was used as part of the scheduling process to schedule a disclosure 
meeting for the subject matter that is the subject of the above-identified 
pmnt application. The document includes, as attachments, four separate 
documents. Two of these documents are encircled and are entitled 
respectively, "Task Sequence Spec" and "ADS Functional Overview", 
Some similarities between these attached documents and Exhibit 1. are 
discussed below. 

On information and belief; attached as Exhibit 3 is a document 
entitled "Task Sequences Functional Specification". This document 
corresponds to the "Task Sequence Spec" document attached to the 
"Disclosure Packet" (Exhibit 2), 

On information and belief; attached as Exhibit 4 is a document 
entitled "ADS Functional Overview", This document corresponds to the 
"ADS Functional Overview" document attached to the "Disclosure 
Packer (Exhibit 2). 



mimMmmm^ Overview* B*mmmi 

Starting first with the docament entitled "ADS Functional 
Overview 5 * (Exhibit 4), the cover page of this document indicates a 
copyright date of 2001 (first bracket). Three of the present inventors are 
listed respectively on the cover page as "PM Author", "Dev Anther", and 
"Test Contact" (second bracket). 

On page 3 of Exhibit 4, this document states that "Microsoft is 
adding an enhancement to the .NET server platform called ADS." (first 
bracket). Additionally, on this page, and bracketed by the second bracket 
designated "A", appears a discussion of mo generic operations capabilities 
that ADS will provide. These capabilities are likewise mentioned in 
Exhibit I and are set off by the bracket designated "A" on page 1 , 

On page 13 of Exhibit 4, and set off by die bracket designated "B% 
appears a discussion of imaging support provided by ADS. Specifically, 
this excerpt of text describes capturing and deploying images using 
"sysprep", which is pan of the Windows Server OPK. On the third page 
of Exhibit I, and appearing bracketed by a bracket designated *B" appears 
a discussion of how to create a master image. Notice in the discussion that 
the master installation is prepared with the "Sysprep" tool 

On page 13 of Exhibit 4, and set off by the bracket designated 
is a discussion entitled "Task Sequences". TMs discussion indicates that a 
task sequence is a sequence of operations to be performed in order. The 
sequence definition is stored m an XML file on fee controller. On page 8 
of Exhibit I under the heading "Create task sequence file for image 
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1 On page 1 I of Exhibit 3 appears a discussion, at item "F" of a job 

2 template that can be created that refers to the task sequence. This 

3 corresponds in content with the discussion on page 9 of Exhibit- I at item 

4 «F' entitled "Create a job template for the sequence file", 

s Based upon the similarities between Exhibits 3 and 4 S which were 

« authored by subsets of the inventors, and Exhibit 1 ■-- the ADS reference 
t cited by the Patent Office, as well as other similarities which are sot 

8 specifically identified above, it should he apparent that Exhibit 1 was 

9 derived from and describes the work of the inventors as set forth in 
Exhibits 3 and 4, 

We further declare that all statements made herein of our own 
knowledge are true and that all statements made on information and belief 
are believed to be One; and further that these statements were made with 
the knowledge that willful false statements and the like so made are 
punishable by fine or imprisonment or both, under IB U.5.C. 1001 5 and 
thai such willful fake statements may jeopardize the validity of the 
appik don cram patent issued thereon. 
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DECLARATION SHOWING REFERENCE'S DIS CLOSURE 
WAS DERIVED FROM APPLICANT'S OWN WORK 

We hereby declare that we are co-inventors of the subject matter 
described in the above-identified patent application. 

We are aware that a publication entitled, "Image-based Installation 
of the Operating System and the Cluster Service Using Automated 
Deployment Services," published on January 1, 2003 and located at the 
link: http://technet2 ,microsoft.com/WindowsServer/en/library/ba62f36- 
2a9d043d209737-ab50d5b8b71bl033.mspx?mfr=true, has been cited 
against the above-identified patent application. On information and belief, 
the website from which this article originated is a website (Microsoft 
TechNet) that is sponsored by Microsoft Corp., the current assignee of this 
application. The Microsoft TechNet website describes various products 
offered by Microsoft Corp.. 

On information and belief, we hereby declare that the above- 
mentioned article describes our own work as set forth in the above- 
identified patent application. To support this declaration, we submit the 
following facts which are supported by the attached exhibits. In the 
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discussion that follows, various similarities between documents authored 
by the inventors and the reference cited by the Patent Office are identified. 

On information and belief, attached as Exhibit 1 is the publication 
entitled "Image-based Installation of the Operating System and the Cluster 
Service Using Automated Deployment Services" (hereinafter "ADS"). 
The ADS reference has been cited by the Patent Office, 

On information and belief, attached as Exhibit 2 is a document 
entitled "Disclosure Packet" and bearing number 302701.1 entitled 
'Methodology for Task Sequence Scheduling". On information and 
belief, this document pertains to the above-identified patent application 
and was used as part of the scheduling process to schedule a disclosure 
meeting for the subject matter that is the subject of the above-identified 
patent application. The document includes, as attachments, four separate 
documents. Two of these documents are encircled and are entitled 
respectively, "Task Sequence Spec" and "ADS Functional Overview". 
Some similarities between these attached documents and Exhibit 1 are 
discussed below. 

On information and belief, attached as Exhibit 3 is a document 
entitled "Task Sequences Functional Specification". This document 
corresponds to the "Task Sequence Spec" document attached to the 
"Disclosure Packet" (Exhibit 2). 

On information and belief, attached as Exhibit 4 is a document 
entitled "ADS Functional Overview". This document corresponds to the 
"ADS Functional Overview" document attached to the "Disclosure 
Packet" (Exhibit 2). 
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The «ADS Function ! Overview" Document 
Starting first with the document entitled "ADS Functional 
Overview" (Exhibit 4), the cover page of this document indicates a 
copyright date of 2001 (first bracket). Three of the present inventors are 
listed respectively on the cover page as "PM Author", 4 'Dev Author", and 
"Test Contact" (second bracket). 

On page 3 of Exhibit 4, this document states that "Microsoft is 
adding an enhancement to the -NET server platform called ADS." (first 
bracket). Additionally, on this page, and bracketed by the second bracket 
designated "A", appears a discussion of two generic operations capabilities 
that ADS will provide. These capabilities are likewise mentioned in 
Exhibit 1 and are set off by the bracket designated "A" on page 1. 

On page 13 of Exhibit 4, and set off by the bracket designated "B", 
appears a discussion of imaging support provided by ADS. Specifically, 
this excerpt of text describes capturing and deploying images using 
"sysprep", which is part of the Windows Server OPK. On the third page 
of Exhibit 1, and appearing bracketed by a bracket designated "B" appears 
a discussion of how to create a master image. Notice in the discussion that 
the master installation is prepared with the "Sysprep" tool. 

On page 13 of Exhibit 4, and set off by the bracket designated "C" 
is a discussion entitled "Task Sequences". This discussion indicates that a 
task sequence is a sequence of operations to be performed in order. The 
sequence definition is stored in an XML file on the controller. On page 8 
of Exhibit 1 under the heading "Create task sequence file for image 
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employment" and bracketed by a bracket designated "C", appears a 
discussion of how to create a task sequence file for the ADS controller. 
This discussion describes the notion of creating a task sequence which is 
an XML file containing a sequence of tasks for a controller to perform. 

The "Task Sequences Function al Snecification" Document 

Turning attention to the "Task Sequences Functional Specification" 
document (Exhibit 3), such indicates on its cover page that three of the 
inventors were developer authors (indicated in the bracket). 

On page 3 under the table of contents, a section designated 2.1.2.2 
is entitled "Task sequences and Workflow Overview' 1 . In addition, a 
section on page 4 designated 2.1.7 is entitled 'Task sequence 
Implementation". These sections correspond in content to content that 
appears in Exhibit 1 beginning on page 8 under the heading "Create a job 
template for the sequence file". 

On page 6 of Exhibit 3 within the bracket designated "C" appears a 
discussion pertaining to a task sequence. Such corresponds in content to 
the discussion on page 8 of Exhibit 1. 

On page 21 of Exhibit 3 appears a discussion the XML schema 
including, at item "D", the task element which includes child elements 
including the command and parameters element (item "E"). This 
corresponds in content with the discussion on page 9 of Exhibit 1 which 
illustrates a sample XML excerpt that includes the task and parameters 
elements designated respectively, at "D" and "E". A discussion of the 
parameters element occurs on page 22 of Exhibit 3. 
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On page 1 1 of Exhibit 3 appears a discussion, at item "F" of a job 
template that can be created that refers to the task sequence, This 
corresponds in content with the discussion on page 9 of Exhibit 1 at item 
"F* entitled "Create a job template for the sequence file". 

Based upon the similarities between Exhibits 3 and 4 S which were 
authored by subsets of the inventors, and Exhibit 1 - the ADS reference 
cited by the Patent Office, as well as other similarities which are not 
specifically identified above, it should be apparent that Exhibit 1 was 
derived from and describes the work of the inventors as set forth in 
Exhibits 3 and 4. 

We further declare that all statements made herein of our own 
knowledge are true and that all statements made on information and belief 
are believed to be true; and further that these statements were made with 
the knowledge that willful false statements and the like so made are 
punishable by fine or imprisonment, or both, under 18 U.S.C. 100i t and 
that such willful false statements may jeopardize the validity of the 
application or any patent issued thereon. 
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image-based Installation of the Operating System and the Cluster Service Using Automated Deployment... Page 1 of 12 



Windows Server TechCenter > m^m.^DiSL2mj^^^sUMm > WJndjM5^^ejr^0.0JjJ3jifikyiD.ejit > .Windows Server 2003: Deplov 
Server. Clusters: Remote Setup. Unattended Installation s and imaae-based Insrallarinns 

Image-based Installation of the Operating System and the Cluster Service Using , 
Deployment Services (ADS) 

• Jiyi'il'.-rJ January 01, 2003 

Automated Deployment Services {ADS} enables you to personalize the operating system Image to your needs. Imaging/Cloning req. 
sysprep.inf (file that contains the configuration information for operating system) every time you need to deploy the image to a dim 
different configuration of the operating system. ADS reduces this complexity by allowing the user to personalize the sysperp.inf file, 
about sysprep.inf and imaging please refer to section Image based installation of Server Cluster. 

In addition, ADS enables you to use a single server to manage servers in your data center. This server, or "Controller," together wit 
ADS services, enables you to deploy operating system images onto devices without an operating system or to repurpose existing de 
^operating system images. In short, you can use ADS to: 

Remotely purpose a device that has no operating system to a useful state or repurpose a device from one state to another state. 

^Operate a scale-out data center by providing ability to run extensible and configurable operations, such as scripts, on one or mor 

Automated Deployment Services consists of the following three main services: 

- Controller service 

- Image Distribution service 

- Network Boot Services 

Refer to ADS help and documentation for more information about ADS and ADS setup and installation. This section assumes that yo 
Following are the steps to deploying Server Clusters using ADS 

1. Add devices (systems that you want to install cluster service to) to ADS Controller 

2. Create a Master Image 

3. Upload the image to ADS controller 

4. Modify sysprep.inf to include Variables 

5. Create task sequence file for Image deployment 

6. Create a job template for the sequence file 

7. Create and store variables associated value in ADS database for the desired device 

8. Execute Job Template against the desired device 
Y Caution: 

If you are using shared storage device then it is vital that only one node have access to the shared disk. Otherwise the shared disk 
shutdown all but one node or use some other techinique(LUN, zoning etc) to isolate the datapath for the nodes. Once a single nodi 
nodes to this cluster. Here are the key things you need be aware and plan accordingly before deploying dusters. 

- The disks must be preformatted and ready to mount when the machine boots up in to operating system. 

- No other machine should be in full operating system at the time when the first node is creating the cluster ( this is to avoid any s 

- Join Node(adding another node to the cluster) task sequence must be run only after a cluster has been formed . This is to avoid i 
is still in progress. 
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1. Add Devices (Systems that You Want to Install Cluster Service to) to ADS Controller: 

After installation and configuration of ADS, you would need to add device(system where you want to deploy operating system and c 
the device through UI or through command line interface. Refer to ADS Help section Manage Devices for more information. You nee 
BIOS. Once the device boots up, it communicates with Controller and boots into deployment agent. This device will show-up in the i 
device. You can control the device through UI (ads.msc) or through command-line interface. 

To add a device through command line interface: 

adsdevice [/s controllername [/u username /w password]] /add devicename [/description "text"] [ /ip ipaddress] [/adminm 
[/assettag assettag] [/jobtemplate templatename] [/?] 

or 

adsdevice [/scontrollemame l/uusername/w password]] /add ^filename 
E.g. 

Adsdevice /add mnhp6nll /description "server cluster 1st node" /ip 172.24.11.207 /adminmac 003Q6E1215b8 /guid 239dldft 
00306el2 /jobtemplate servercluster.xml 



To add a device through ADS.msc (UI interface): 
Open Automated Deployment Services. 
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In the console tree, right-click the Devices folder and dick Add. 



In the Add Device dialog box, type the device name in the Name box. 
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| 5erver Cluster 1st Node 
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If you want to add more information to help identify the device, type the information in the remaining boxes, and then click OK. 



2. Create a Master Image: 

Creating Master image consists of following steps: 



- Building a master installation on a master computer. Building a master installation includes installing and configuring the operatint 
include on your disk image. 

- Preparing the master Installation with the Sysprep tool. This includes configuring and running the Sysprep tool on the master com| 

- Generating a disk image of the master installation with the disk-imaging tool. This includes saving each disk image to a permanen 
3 Note: 

You cannot clone a cluster node with cluster service installed. You must de-instal! the cluster service or use a specially prepared m 
create a disk Image. 

Refer to Image based installation of Server Cluster for more information about creating master image. 

3. Upload the Image to AOS Controller 

After Capturing the image of the operating system you would need to add the captured image to the controller. Create directories n 
root of the controller. Make sure the volume where you create these directories have enough free disk space to hole at least 2 times 

Next step is to add the image to the ADS controller database. You can add the image either through User Interface or command line 
image 

adsimage [/s controllername [/u username /w password]] /add imagename /path imagepath [/description] 

After adding the image, you would need to move the image to the Image directory. You can check if the image is been properly add 

Refer to managing Images section in ADS help for more information about managing image. 
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To add the image through UI Interface 

open ADS.MSC (Automated deployment service) 




:_J Zon-soh Pool. 

Autcunatod Deployment Semco! 
_J 5&VICM 
_J r^x:*: 
_1 Sets 



y376SPU>n 
Uj]wtft^3 

a™ 



3?6S upyode fit 
wln».Sp3 
376S lm*ge 
3719 PWnOS 



r 



Right click Images and click Add 



j E:\ImageBackUpU70cd5379-7ad6-451b-96d3-d0: " , . Browse.,, 

Image Name: 
Jw3k£S_cluster 

Description; . ' ■ ■ , . ". . - • 

I windows 2003 enterprise server with server dusterl 



mm 



Jj , • ; '.£ancel ;_ 



Fill out the Image File Path and Image Name, click OK 



4. Modify sysprep.inf to include Variables 

Sysprep.inf file is used by the mini-setup to Install and configure the operating system. This files contains the configuration informal 
controller database. This configuration information is static to the image. ADS allows you to customize sysprep.inf file by allowing y< 
the configuration information that will change from system to system can be removed from the sysprep.inf file. Instead variable cor 

Before modifying the sysprep.inf file from the image, you would need to mount the image to a drive. ADS has tools that will allow y> 
and mount the image using below command line syntax 

imgmourtt /mount /w {imagefilename} /d: driveletter 
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Change drive to the above drive letter and change directory to sysprep directory. There 2 ways to create or modify the sysprep.inf < 
Refer to Imaged-Base server cluster Installation section for more information about sysprep.inf. 

Open the sysprep.inf file in notepad.exe. Locate variables for your installation that changes from a system to system. Define them e 
sysprep.inf file. For example. In the foilowing snippet of sysprep.inf file, items marked with * at the beginning of the line can be def 



[ pa rams , ms_tc pi p . Adapte rOl] 

* dhcp="no" 

* IPAddress="10.U.26.11„172.24.11.141" 
Speci f i cTo=Adapter01 

* SubnetMask="25S. 255.0.0,255.255.255.0" 

* wins="no" 

;Adapter02 is used for public network 
[par ams . ms w tc PiP.Adapter02] 
Speci f i cTo=Adapter02 

* DefaultGateway="172.24.11.1" 

* DHCP="N0" 

* IPAddress="172.24.11.205" 

* SubnetHask="25S. 255. 255.0" 

* DNSSe rverSearchorder="172 . 24 . 10. 2 , 172 . 24 . 0 . 2" 

* WlNS="Yes" 
WINSServerList= ,, 157.55.254.201,157.SS.254.203" 

[GuiRunonce] 

;see section 2.2.1 in this document for a sample text of AssignDrivei_etters.bat file 
;see configuring cluster section and appendix B for createfs.vbs 
'CommandQ^systemdri veX\scri pts\Assi sgnDri veLetters .bat 

*commandl = "^windi raS\system32\cluster.exe /cluster :SV-CLUSTER /CREATE /node:SV-node1 /USER:domain\user /pa 
*Command2 = "%sy5tendrive%\ClusterlnstallFiles\createfs. vbs SV-CLUSTER ClusterGroup svFileShareResource E:\ 



After replacing these with variables, the snippets will look like the following. Notice that each variable name starts with A and ends 
ADS will hot install and configure the operating system properly. Note: In the guirunonce section, above sample snippet replaces th 
can run your own scripts in this section also. After successful installation, Windows will run commands in guirunonce section on the 
services specified. 



[params.MS_TCPiP.Adapter01] 

OHCP="ADHCPlA" 

!PAddress="AiPAddresslA" 
S pec i f i cTo=Adapt e rOl 
subnetMask="AsubnetMasklA" 

WINS="AWINS1A" 

;Adapter02 is used for public network 
[pa rams .MS_TCPIP.Adapter02] 

Def aul tGateway="AOef aul tGateway2A" 

Speci f i cTo=Adapter02 

DHCP="ADHCP2A" 

iPAddress="AiPAddress2A" 

subnetMask="AsubnetMask2A" 

DNSServersearchOrder="ADNSServerSearchorder2A" 

WINS="AWINS2A" 

wiNSSe rverti st="AwiNSserverLi st2A" 
[GuiRunonce] 

iMount all volumes before form/join the cluster 

CommandO="ACLUSTER_COMMAND_MOUNTA" 

comniandl=AASsignDriveLettersA 
Command2="AcLUSTER_coMMANDA" 
Command3=AFi 1 eShare* 



Once you have modified the svsprep. in file, unmount image using the below command line interface. 
Imgmount u drive: 

ADS also allows you to define the variables through scripts. Refer to ADS help on managing Images for more information. 
3' Note: 
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Appendix F contains a modified and complete sample sysprep.inf. 
You can also use setupmgr.exe to create, modify unattended setup file, syspre.inf file with variables. Run setupmgr.exe through c 



p « ■ - — 

m< Setup Manager 


IS 


Nttw ix Existing AriiwtM File If^'^ 
Ar. answer file tells Setup how to install and conliggre Windows. IIP^M 


An answer file is a script thai provides answers lo the questions 01 optio 
during Window* Setup. Foi example, il your answer file provides eh ens 
"Select a time rone" prompt, that page will not be shown to the end us 


ns presented 
wet to the 
i during Setup. 


•'• £roaio rioys! 




<~ M<tt% existing 




' :.<<!,! ..II , litf- r.W,.: 61 \W- ;*f v,'ef filf-. 




1 


Bio ww | 








| . Cancel | 





Type cif Setup 

T he type ol setup you choose determines the name arid format of the resulting 
answer lile. 

The answei file you cieate will either be U nattend.txt, Syspiep.lnf . 01 a ; sil file. 
Choose a type ol setup; 
f " Unattended setup 



f" Somole Installation Services |RIS) 



< Back | Mext> ] Cancel 



choose sysprep setup 
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Which Windows product will bo installed using this answei lite? 

Select a Windows product: 
t" Windows XP Home Edition 
Windows XP Erofessiona! 
C Window* Server 2003, Standard Edition 
<• [Wind; w SeTvci 2003 jSmp iso Fd^u rt 
r Windows Scivoi 2003, Wob Edition 



< Back jf Uetii > ^ Cancel | 



choose the operating system type that you want to deploy 



To use this option, you must accept the terms of the End User License Agreement 
(EULA1 and any Microsoft license agreements you have for the version of Windows you 

want to install. For more information about the EULA. consult your dr 

youi Miciosoll license agreement. 



Do you want to fully automate the installation? 

\e. htya".roi,3> a their ctal^n 
f** No, do not fully automate the installation 

II you choose No, Ihe end user must accept the End User License Agreement. 



<Back | je*T> ] Cancel 
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None and OTOrtfedipi 



You can customa Wndows Sshp b? plowing t dofauk na 



A*M-ijir«oi Patrwcut 
Urlwm1.iri>) CwnpanenU 
W«l,Oiail>Cil Doirvain 

fcoSwiestSaiingi 

RegonslSBiiinpT 

Install Piwsis 
Hun Onw 

IdenMicdicnSnma 



umi wll bo prompted*! en 

Name: 



On the feB «ia el this page, <te «epi of StUis Manapst « *hown fa now «ifoiw 
Tho hiEWis^ted » top is yaw cusrant pcsKon, You can move lo any clop h Setup 
Menssei by tfckho Ihl* Step in Ih* fcl 



Above allows you to enter values for the setup. Here Instead of providing the actual values, you can provide the variable names tha 
variable whose value will be replaced through ADS. 



j - '"-.;riffllteHinB« 
< U«n« and QiaanKifficri 

Disptes' Stisimgi 

Prcxkcl Kfy 
Matviiyi Settings 
Lcsnsr-a Mods 

A-iiinslitfor PoHwcrd 

W(rl.pi«up en Ofttnon 

S eltngs 
Irian* Any 
■ Regicr.jl S edlmgi 

Injlgll Pumois 
Hun One* 

Ad*ionsl Ccuwdi 
WanliiiotflcnShms 



1 a command <ho.fr*l fcno ausei toff 



*dusiM_cfMte_comnand*' ' 



Move Daw j 

To ipecSji coitmonds to wn ol Uw end ol unsBcnded Setu?. uso the A&Bimal 



After completing above, click Run Once and enter the cluster configuration command. In the above example, A cluster_create_comn 
actually value will be defined in ADS. Once the sysprep.inf is created with the variables, save it and copy this sysprep.inf file into th. 



5. Create task sequence file for image deployment 

Next step is to create a task sequence file for ADS controller. It is a XML file containing sequence of task for controller to perform ac 
sample sequence files. You can use any of the sample XML file and modify to your needs. In this file you will define the personalize 1 
In addition, you will define what other sequence of task controller must run against the device. For example, partition the disk, cop} 
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reboot and check the state of the device etc. 

You would need to modify at least the foflowlng sections in the sample XML files for it to work properly. 

step 1 create a single 4999MB partition on the disk --> 
'<task description="Partition the disk"> 

:command>/bmoni tor/bmpart . exe</command> 
parameters> 

<parameter>\device\harddiskO</parameter> <!-- selects harddiskO --> 
<parameter>/init</parameter> <!-- erases all partitions on harddiskO --> 
<parameter>/C:4999</parameter> <!-- creates a new partition (#1) of size 4999MB --> 
<parameter>/A</parameter> 

<!— activate the newly created partition (#X) --> 
;/parameters> 

k> 

in the above section (step 1) you need to define the partition size for the disk, in the above example it v* 
<!— STEP 2 download images --> 
<task description="Down1oad image"> 
■ <command>/imaging/imgbmdeploy.exe</command> 
<parameters> 

<parameter>3?18Plain</parameter> <!-- name of the image to be deployed— > 
<parameter>\device\harddiskO\partitionl</parameter> <!— deploy the image to partitionl --> 
<parameter>-r</parameter> <!-- specifies deploy mode — > 
<parameter>- client</parameter> required parameter --> 

</parameters> 
</task> 

in the above section (step 2) you need specify the image name that you used to add to controller, in the ab 
<!-- step 3 Personalize the sysprep.inf file --> 
<task description="set sysprep custom info in the sysprep.inf file"> 
<command>/bmonitor/bmstrrep.exe</comnand> 
<parameters> 

<parameter>\device\harddiskO\partitionl\sysprep\sysprep.inf</parameter> 
<parameter>AproductKeyA</parameter> <!— key(ProductKey to be searched in sysprep.inf file 
<parameter>"$ProductKeyS"</parameter> <!value to be replaced with. Make sure to Embed it in quo 
<parameter>AOEMDuplicatorstringA</parameter> 
<parameter>"$OEMDuplicatorstring$"</parameter> 
<parameter>" $cluster_command_mount$ " </par amete r> 
<parameter>ACLUSTER_C0MMANDA</parameter> 
<parame te r> "$cluster_command$" </pa ramete r> 
<paraineter>AAssignDriveuetters^</parameter> 
<parameter>"$AssignDriveLetters$"</parameter> 
<paranieter>AFileshareA</parameter> 
<parameter>"$PileShare$"</parameter> 
</parameters> 
</task> 

In the above section (step 3) you need to specify the variable names that you used in sysprep.inf. Notice that the variables are emt 
replaced with is in quotes ($xxxx$). 

A sample XML file for deploying a single node clusters is included in the appendix D. This sample file will also create file shares on tt 



Create a job template for the sequence file 



Job templates in ADS provides a way to define and store instructions for task that you plan to run against a device (or set of device: 
adsjobtemplate command-line tool or the ADS snap-in to create a job template. You would need to associate this job template wii 
operating system and configuring server cluster. After you create a job template, you can use it to run a job as often as you want a 
values. For instance, you can first create a single node cluster using the cluster command with create switch. After the cluster creat 
system you want to join this cluster after operating system deployment. For this you would only need to change the value associate 

To add the jobtemplate using ADS UI interface. Open ADS.MSC 
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Right click Job Template and click Add. This will Invoke the adding job template wizard that will guide you through the process. 

7. Create and store variables associated value in ADS database for the desired device 

Now you would need to define and store the variables for each device In controller database. These values get replaced in sysprep.ii 
can define variables through ADS snap-in or command-line interface. To add through ADS Snap-in, double-click the device and on t 
name that is used in the sequence file and sysprep.inf and associate it with a value. 



Open ADS.M5C and double click the appropriate device 
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Click User and then click Add . 



Name: J] 
Value: J 

F Encrypt Value : - 

j OK | ' Cancel ' | '"" 



Enter the variable name and then enter the value for this variable and click ok. 

You can also use command-line interface as listed below to add variables to the device database on the controller, 
Adsdevice /edit device-name /setvar variable-name "value" 

E.g.; 

Adsdevice /edit mnhpUn3 /setvar DNSServerSearchOrder2 "172.24.10.2,172.24.0.2" 
MnhpUn3 is a device name, DNSServerSearchOrder2 is a variable. 

You can create a batch script to add all the variables for a device. Appendix G includes a sample batch script file that defines values 

8. Execute Job Template Against the Desired Device 
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Next step Is to execute the job templates against the device, To assign a job template to devices manually, use either the ADS sna 

Once the device is connected to the controller, right click the device and click run job. This wilt invoke a wizard that wili take you thi 
execute. 

Once the execution starts, you can monitor the job progress by clicking on running job option on the left pane of ADS snap-in. It lis' 
XML file. After cluster creation you may want to configure the cluster based on your need. You can use any script to configure cluste 

You can use the same sequence file, sysprep.inf, image for installing and configuring second node with little modification. You wouic 
the second node(device). For example, duster command to add a node to this cluster, IP address for the node etc. 



Was this information helpful? 

[Yes] No\ | Somewhat"] 
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Functional Specification 

Task Sequences 



1 Scenario Descriptic 



A task sequence is a sequence of steps to be run on one or more target systems. Each step is 
either an operation or another sequence. Operations things like running a script or program, 
and are defined in the Remote Execution Specification. 

The IT industry needs computing environments that are highly manageable so as to reduce 
the total cost of ownership. Industry support and common standards are critical in building 
such environments given that management operations usually cross hardware and software 
boundaries. ADS provides a way to run a task on one or more target servers. By itself this 
addresses only a single task at on one or more managed servers. If an end user wants to 
execute a sequence of tasks on one or more managed target servers without any user 
intervention, it can be achieved through defining and executing a task sequence. 

Atask sequence is a group of tasks that are to be sequentially executed on one or more target 
servers. This group is defined in one or more XML documents. Sequence author can even 
integrate multiple sequence xml document modules into a single sequence document using 
standard XML features like XSLT, XPath, etc available in MSXML 4.0. Since Xlnclude, 
XPointer, XBase and XLink concepts are not supported in MSXML 4.0, XSLT and DTD entity 
referencing techniques are exploited to support the extensibility through the use of sequence 
modules. 



Task sequences are required for two main things. First, to enable the remote, unattended 
deployment of bare metal servers from no OS through to a configured and running operating 
system and application. This also includes re-purposing a current system as though it 
bare-metal system. 

Second, to enable unattended sequences of remote operations against running OSes such as 
performing a series of steps to check for and if necessary install hotfixes. 



Enable sequencing of operations. 

Any step that can be executed through a sequence could be executed as an 



as 
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1.3.1 Non Goals 

■ Synchronization between steps on different target servers (e.g. no support for 
stopping sequence on other targets if sequence fails on one target, or for performing a 
given step at the same or serially on different targets). 

■ Transactional capabilities (e.g. no support for either all steps succeed or all fail). 

■ Adding operation types that are specific to sequences. 

1.4 SCOPE 

1.4.1 What does this spec cover 

1 .4.2 What this spec doesn't cover 

1.5 RELATED DOCUMENTS 

■ Remote Execution Functional Spec.doc 



2 Feature Descriptit 



2.1 

2.1.1 Terminology 

Operation - a single process initiated from the controller on one or more servers 

Sequence - an ordered list steps to be executed, where each step is either an operation or 
another sequence 

Task Sequence - see Sequence 

Step - a single element in a sequence, which can be either an operation or a sequence. 

Job - either something that the user initiates (for example, a sequence or an operation), or an 
individual particular operation 

Jobs object - an object in the object model which can represent one of an operation, a 
sequence, or a set of sequences on multiple target devices (implemented as a record in the 
Jobs table in the database and a class in WMI). 

2.1.2 Scenarios 

ADS provides a way to run a task on one or more target servers. The task can be a windows 
program, a script, or various types of special actions (such as reboot or shutdown). Task 
sequences add a way to sequence a series of tasks so that they can be performed one after 
another without requiring administrator intervention to start each one manually. 
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2.1.2.1 The Problem 



As an example of why task sequences are useful, consider the case of creating a user 
account. In this example, the following steps must be performed: 

1) Create a user account on the target server 

2) Assign a disk quota for this user on the target server 

3) Create a mailbox for this user on the target server 

Without task sequences, the administrator has two ways to implement this. 

First, they could create a single script that performs all of these operations. This script can then 
be run from the controller, with the required input information (such as username and disk 
space quota to apply). However having a single script reduces the modularity of the system. If 
the administrator next has to create a provisioning process that comprises creating a user 
account, copying some fi les, and creating a mail box, they would have to create a new script. 
The administrator could re-use code from the first script, but now the administrator needs to 
modify both these scripts if a bug is found in the create a user part, for example. As the 
number of steps and number of different sequences increases, the system will get less reliable 
and ultimately be unmanageable. 

A second way that the administrator could implement this without task sequences is by writing 
a separate script for each step. There would be a "create user" script, a "assign disk quota" 
script, and a "create mailbox" script. To actually provision the user, the administrator would go 
to the controller and run the first script. If that script succeeds, the administrator would run the 
second script. If that succeeds, the administrator would run the third script. This has the 
advantage over the first solution that the process is very modular. By running different scripts 
in various sequences the administrator can implement a lot of different provisioning processes. 
Each individual script is relatively small and self-contained, so it can be well tested and reliable. 
However there is additional workload on the administrator. They both need to manually run the 
scripts and check the results, and remember what scripts to run in what order for each 
provisioning process. Task sequences help the administrator by automating the sequencing of 
multiple steps. 

2.1.2.2 Task sequences and Workflow Overview 

A task sequence is a definition of a sequence of steps. Each step can either by an operation 
supported by the controller (e.g. the ability to run a script on a target server), or another task 
sequence. 

The following diagram shows a task sequence that defines a sequence of three steps, each of 
which is an operation: 
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<> 


Step 3 







This diagram shows a task sequence where the second step is a reference to a different task 
sequence: 




A task sequence is defined in a file, using the task sequence definition schema. The task 
sequence definition file contains a section for each step in the task sequence. Each step may 
be a reference to another task sequence definition file, or a definition of an operation. 

Operations are defined with the same attributes as defined in the Remote Execution 
Functional Spec.doc document. Specification, each operation is defined with: 

■ Delivery (how the content - if any - is obtained by the target) 

■ Command (for programs, this is the program to download or run, or for special 
actions, this is the action to perform) 

■ Parameters (any arguments to the program given in the command field) 

For example, if the step is to download the script C:\CreateUser.vbs from the controller to the 
target device, and run if with the argument johndoe, the task sequence operation would be 
defined like this: 
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This is given in a simplified syntax, the actual task sequence specification syntax is based on 
XML and is defined elsewhere in this document. It means that the operation is to run a script. 
The script is sent to the device using BMCP (the Delivery). The script path name, on the 
controller, is given (Command), and the parameters or arguments to the script (Parameters). 

The actual syntax would be: 



However placing the name of the user account into the task sequence definition scheme like 
. this is not very useful. Instead, it is possible' to substitute variables into the individual 
operations. This can be done in two ways: 

■ First, variables can be substituted when the XML definition is read. This makes use of 
standard XML file parsing to replace formal parameters defined in the schema with 
values defined via a 'stylesheet'. This is called "XML substitution". 

■ Second, variables can be substituted when each job is started. These variables are 
substituted from information in the object model on the controller. In this version, the 
only variables available are those associated with a device record, and they can only 
be updated on the controller. However in the future, it will be possible to update the 
variables from the agent (so, for example, one stage of a sequence could use variable 
values set in a preceding stage), or use variables from different aspects of the object 
model, such as variables associated with images or with a currently running workflow. 
This is called "variable substitution". 

The alternative to XML substitution is to use variable substitution. Here is an example step, in 
simplified syntax, showing the use of a variable. Variables can only be specified in the 
parameters field. When this sequence is loaded, the value of the Parameters field will be 
stored as given. When the step is to be run, the variable will be substituted by its value. In this 
example, the variable Sdevice.user.username will be replaced with the value of the user- 
defined variable with name "username" associated with the device on which this step is being 



Delivery 

Task sequences can be considered as a higher level wrapper for one or more operations. 
Besides the definitions of the individual operations, task sequence feature adds: 

■ 2.1.2.3 Handling for errors that occur in individual operations 

The task sequence is defined without reference to any target servers. It is "invoked" against 
one or more target servers. It is assumed in this version that if it is run on multiple target 
servers, then all the steps run on all target servers. Each sequence is a serial list of steps, 
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executed in order. There is no control flow. If any step cannot be started or fails to complete, 
the sequence will stop (on that target server). 

When a sequence is executed on multiple targets, it runs in parallel on each target. In this 
version, there is no communication between the sequences running on different targets, so 
there is no synchronization between targets. 

X A job template can be created that refers to the task sequence. This template may also refer to 

K J a device or set, as well as a task sequence parameters file. 

| 2t4^ 32.1 .2.4 Example 1 - Create User Account ( Formatted: 

In this example, three steps are needed: 

1) Create a user account 

2) Assign a quota 

3) Create a mailbox 

An operation is defined for each of these, comprising a script to be run on the target server. 
The following scripts are written: 

■ CreateUser.vbs usemame 

m AssignQuota.vbs usemame quota 

n CreateMailbox usemame 
The text in italics shows the parameters required for each script. 
These jobs can be run individually by the administrator, for example 
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Alternatively, a task sequence definition can be created. The specific syntax for the definition is 
XML, and is given iater in this specification. Here it is given in a pseudolanguage. 



Step 2 

Deliver/ 




Note: 

■ For task sequence variables, the formal variable is replaced with the value when the 
task sequence is invoked. For device variables, the formal variable is replaced with 
the value when the specific operation is started on a particular target server. 

24^4 2 1 .2.5 Example 2 - Build New Server (PXE Environment) - { Formatted: Bullets and Numbering ] 

Task sequences are particularly useful for building a new server from bare metal. Reboots are 
required in the process, so this cannot be implemented as a single script. 

This example assuming that the new server supports PXE and the environment supports PXE 
requests (that is, there is a DHCP server that responds with appropriate PXE tags). 

A task sequence can now be started for this server. The server is only identified by its MAC 
address on the controller. The administrator would locate this record, and then start the task 
sequence. 

The task sequence might do the following: 

■ Download and run a virtual floppy which configures the BIOS. 

■ Download and run a second virtual floppy, which configures the RAID array and some 
disk parameters 

p Boot into the deployment agent and download an image to the primary hard drive - 
this will be the production OS 

■ Personalize the newly downloaded image with a hostname, domain name, IP address 
and possibly other information 

■ Boot into the production OS now on the hard drive 

■ Possibly perform further configuration steps in the production OS, such as installing 
applications or utilities. 
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At a high level, this task sequence comprises three sections. The first section is instructions to 
be done during the PXE boot phases. At the end of this phase, the task sequence marks the 
device record to tell it the next boot it to be into the deployment agent. The second phase is the 
operations run against the deployment agent. At the end of this phase, the device record is 
updated to tell the controller to let the system boot into the production OS. The third phase 
contains the operations to perform once the production OS is running. 

So the complete list of actions that will be defined in the task sequence are: 

■ PXE environment: 

1 ) Ru n virtual a floppy to config ure the BIOS 

2) Specifiy to boot to deployment agent on next boot 

■ Deployment agent: 

3) Partition the disk 

4) Run an operation on the device to download the target image 

5) Configure the downloaded image so it can talk to the controller (for beta 1 ) 

6) Personalize sysprep.inf on the target 

7) Specify to boot to hard disk on next boot 

8) Reboot 

■ Target OS: 

9) Perform an unattended install 
Each of the steps is defined like this: 

■ Boot to vfloppyl 



Here the name of the vfloppy file is "configurebios.img", which exists on the TFTP 
server on the system running the deployment agent builder server. 

This waits until a PXE request comes in from the device. The device record must 
already have been created, and the PXEBootAction property set to 'Respond'. This 
sequence will have been associated with the device as the sequence to run when a 
PXE request is seen from the device, using the 'JobTemplate' property. 

This assumes that the device is booted by hand. If the device is already running and 
has the agent install, this step could be preceded by a "reboot" step. 
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Note that now, when the server boots, the controller will tell the NBS to download and 
run this specified virtual floppy image. The task sequence will move immediately onto 
the next stage. 



The virtual floppy executes without any communication with the controller. At the end 
of running, the virtual floppy code must do a reboot. If it does not reboot, the target 
device will be uncontrollable from the controller. The controller has no direct way to 
determine if the virtual floppy executed successfully. However the user might design a 
floppy to write state to a network share, and use the next step of the sequence to run 
a controller program that checks the status, and if necessary aborts the sequence. 

This step is in the running state until the next PXE request is received (that is, the 
request initiated after the virtual floppy completes and does a reboot). 

■ Boot to deployment agent 

When the virtual floppy reboots, the next step tells the PXE server how to respond to 
the PXE request. It tells it to respond with information necessary to run the 
deployment agent pre-OS in memory, 



This step now waits until the target system is available and running in deployment 
agent. It is an error if the system boots into a full OS. Once the system is available 
(which the controller notices either through auto-discovery or by polling), move onto 
the next step. 

Deployment agent environment: 

When the system boots into the deployment agent, it will announce itself to the controller. The 
controller will automatically take control of it because there is a task sequence job running for 
this device. By taking control, the controller establishes a secure link to the deployment agent 
that can be used to run additional steps of the sequence. 

■ Partition the disk 

The target device is now running the deployment agent and is ready to accept 
commands from the controller. The first step is to partition the disk. In this sequence, a 
single partition of 3GB. Note that the image must have been captured from a volume 
of less than 3GB. 





Run an operation on the device to download the target image 



The next step is the image download. 



Copland 
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This step is running until the job returns an exit status (or error). This will cause the 
image with name 'w2k-sp2-base-image' in the controller Images database to be 
downloaded from the image store to the target device. 

■ Configure the downloaded image so it can talk to the controller 

The image is now on the disk, but is not configured to be able to talk to the controller. 
It needs to know at least the controller's IP address and port, and the public certificate 
of the controller. Possibly other information will be required as well, such as the NIC to 
use to communicate with the controller. 

For beta 1. the image must include this information. In particular, it must include the - { 

controller certificate, which can be supplied when installing the ADS agent 
component. 

After beta 1 . this will be set via a "personalize" step in the task sequence. 



Formatted: Bullets and Numbering 




• j Formatted: Strikethrough 



ie sysprep.inf file 

n applies to beta 1 . After beta 1 . this configuration w ill b e done by 



d ownloading a sysprep.inf file from the controller as part of the "personalize" step in 
the task sequence. 

The image is now on the disk, but contains only the generic sysprep.inf. The 
sysprep.inf on the target device must now be personalized. This assumes that the 
sysprep.inf file in the image is properly prepared, with the values set to placeholders 



*■ (Formatted: Pullets and Numbering 



such as ' A BIG_ADMINJ>ASSWORD A which will be replaced with actual values in this 
step (in this example, the hostname will be set to 'server5.hoster.com'). 
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Note that the password is given in plain text in the task sequence here. The sequence 
fife should be protected by ACLs to ensure that only authorized people have access to 
its contents. 



step 9 =: . 

Command . = /Ey.bMiTOa/rabcov : 

; Job- will- xebaot • . • Tae-'.': ^-i: 

Tell the device to reboot, then move to next step. This starts the mini-setup pi 
on the device. 

■ Boot from hard disk 



Cxcod ■ = /PXE/boqt-hd 

This waits until PXE request comes in, then send back information to tell device to 
boot to hard disk. It then continues to wait until discovery comes in, then moves to 
next step. This will start mini-setup running on the target device (assuming that the 
image deployed was captured after running sysprep). At the end of mini-setup, it will 
reboot again, so a second boot action is required. 

■ Boot from hard disk 



h /PXE/boot-hd v..- ^V. 

This causes (he boot at the end of mini-setup to be directed to boot from the hard disk. 
Target OS: 

■ Run an unattended install 

Step ii» 
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24A44- 2.1 .2.5.1 Completed Scenario « { Formatted: Bullets and Numbering } 

The complete scenario for doing a bare-metal to full OS boot for a new server is given in this 
section. 

First, the relevant images need to be created and made available. 

1) Create an image of the production OS to be deployed. 

This must be a sysprep'ed OS volume. This is stored on the image server through the 
controller. The details of capturing an image and placing it onto the image server are 
described in the imaging deployment specification. The sysprep.inf file must be 
prepared. 

2) Create an image of the virtual floppy 

Create a bootable physical floppy that runs the tools necessary to configure the BIOS. 
This floppy must run unattended, and take no input. Capture the physical floppy to a 
file, and place the file in the TFTP directory on every NBS server. 

Details of creating the floppy image are given in the virtual floppy specification. 

Second, the sequence needs to be created and made available for use. The task sequence 
looks like this: 
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2.1.3 Overview 

2.1.3.1 Schema Capabilities 

2.1 .3.2 Invoking on a Single Target Server 

When the first step has finished, (he controller starts the second one. And so on for the third 
step. A step is regarded as having completed when the controller status for that job is updated 
from "in progress" to "completed" or "completed with errors". 




2.1.3.2.1 Errors 

If an error occurs in a particular step, the sequence slops. An error can be one of these: 

■ The script cannot be run on the target server for any reason (e.g. network problems, 
target server not responding, controller out of resources, target server cannot run a 
script in this language). 



i&DOCLAST SAVED: 2f 



■ The script runs but does not complete (it is killed by the administrator from the 
controller, it is killed by the administrator on the target server, it is dies on the target 
server because of lack of resources, the target server shuts down or reboots before 
the script completed, etc). 

■ The script does not complete within a certain period of time (the timeout). The timeout 
is configurable for each operation. It should also be possible to configure the system 
to attempt to kill the process which timed-out (although this may fail). 

■ The script completes but returns an exit status that is defined by the task sequence 
system to mean "abort entire workflow". This occurs if the exit status is any value 
apart from zero. 

If the controller aborts a workflow on a particular target device, it must log this information and 
maintain appropriate records in the object model to allow the administrator to determine what 
stage failed and which the error was. The administration can then either decide to fix the 
program and run the sequence again, or restart the sequence from the failed step 

The diagram below shows the workflow. For the sake of simplicity, all the possible errors are 
expressed by the single "Success?" decision box. In reality, there are at least three places 
where a single step can fail: when it is being started, while it is running and after if has 
completed. 





2.1 .3.3 Invoking on Multiple Target Servers 

A task sequence can be invoked on multiple target servers. The diagram below shows a task 
sequence that consists of three steps being invoked on three target servers. Error condition 
processing has been removed from the diagram. 
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2.1.3.3.1 Synchronization 

In this version, there is no synchronization between the state of the sequence on different 
target servers. (See section 5.3). 

2.1.3.3.2 Errors 

In the single target server case, if an error occurs in a workflow, the workflow is aborted. When 
a task sequence is running on multiple target servers, the action to take on an error on a single 
target server could be: 

■ Abort the workflow on this target server only (others will continue to run) 

Other actions have been punted. (See section 5.4). 

2.1.3.4 Device Variables 

Variables are defined in the Remote Execution Specification. 

2.1.3.5 Control Flow 
Not supported. 

2.1.4 XML Schema 
2.1.4.1 Description 

This section describes each element that can be part of a task sequence, 

The general format of a task sequence is: 

<?x in). vera!.:.- -La" e-ccdlr.g ^tf-S" ?> . < . ■ 



*• { Formatted; Body Text 
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The sections below describe each of the eleme nts used within sequence definitions. 

2.1.4.11 sequence ---- { Formatted: Bulletsand Numbering 

Parent elements: None ( if this sequence element is the root level element) or 
ice 

Child elements: ta sk, sequence 
Attributes: 



■ command - comment text (optional), by convention this typic ally contains the filename 



■ parameters -comment text (optional) 

■ description - comment text (optional) 

■ xmlns - specify the default namespace for child elements, must hav e value 
"urn:schemas-microsoft-com:sequence" 



Content: None 
f 2.1,4-1.2 task 

Parent elements: sequence 

Child elements: command, parameters 

Attributes: 



J 6 



' { Formatted: Bullets and Numbering 



■ timeout - specify the ti meout period for this step, in seconds (optional: default is 0 *■ ( Form atted: Bulletsand Numbering 

meaning no time out) 

■ doesReboot - true 1 means that this step will cause a reboot of the device: 'false' 
means it will not (Q ptionaj; default is false') 

■ description - comment text (optiona) 

Content: None "\ Formatted: Body Text 

2.1.4.1.3 command 

Parent elements: task 
Child elements: None 
Attributes: None 
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delivery - specifies the mode in which the command is transferred to the target device - j Formatted: List Bullet, Indent: Left: 0", First 

and it can be either "none" or "bmcp" (optional: default is "none'") [ line: 0" 



■ target - specifies the target on which the command will be executed and it can be -..-- { Formatted: Font: Arial 
either ' : device l: or 'controller'' (optional; default is "device") "* \ft 

Content: command for this step. Text between $ symbols is replaced with variable 

value. $S may be used to specify a literal g. 



2-1 A 1.4 parameters ^—/^X * { For matted: Bullets and Numbering 

Parent elements: task 
Child elerrx 
Attributes: None 
Content: None 



2.1.4.1.5 parameter *- { Formatt ed: Bullets and Numbering 

Parent elements: parameters 
Child elements: None 
Attributes: None 

Content: Parameter to be used for this step. Text between $ symbols is replaced with variable 
value. S3 may be used to specify a literal $. If multiple Parameter elements are given for a 
single step, they are concatenated into a single parameters string, with each Parameter 
content separated by a single space. If any single Parameter content itself contains spaces, 
that argument is surrounded by double guotes. 



<parameter>1</parameter><parameter>2</parameter> - the command is invoked * { Formatted: List Bullet 

with the parameter list string <1 2> (without the angle brackets) 

<parameter>1</parameter><parameter>SS</parameter> - the command is invoked - { Formatted: Bullet 

with the parameter list string <1 S> (without the angle brackets) 

<parameter>1</parameter><parametepSdevice.svstem.name</parameter>-the 
command is invoked with the parameter list string "1 name" (without the v) where 
name is the name of the device on which this seouence is being run. 

<parameter>1</parameter ><paramster>2 3</parameter> - the command is invoked - { Formatted: List Bullet 

with the parameter list string <1 "2 3"> (without the angle brackets). Most command 
processors will treat this string as containing two arguments. <1> and <2 3> (without 
the angle brackets). 
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M -2.1 .4.2 Formal Definition - - f Formatted: Bullets at 

The following listing shows the task btaeefint -sequence XML schema defined with XSD (XML 
Schema Definition). 



24^2-2. 1.4.3 Examples *~~'~ \ Formatte^ltets and Numbering 

2.1.4.2.1 2.1.4.3.1 Bare metal to Full OS 
To be provided. 

2.1. 1 1 .2.22, 1.4. 3 .2 Simple document -—--- f Formatted: Bullets and Numbering 

The following listing shows the simple blueprint xml documenL 
To be pi 



2A-.4£3 2 1 4.3 3 Compound document with dtd *- { Formatted: B 

To be provided. 



2.1. 4 .2. 4 2.1.4.3.4 com pou nd document with xslt - - { Formatted: Bullets and Numbering 

To be completed. 

2.1.5 Jobs Objects Hierarchy 

Whenever a job is run, it will create one or more Jobs objects in the object model. These 
objects are used to represent the state of the job as it runs, and after it has run, the Jobs object 
represent the historical record of what the job did. 

2.1.5.1 Hierarchies 

This section describes the hierarchy of Jobs objects created and used for each type of job. 
There are four types of jobs that are of interest: 

■ Running a single operation against a single device 

■ Running a single operation against more than one device 

■ Running a sequence against a single device 

■ Running a sequence against more than one device 
The Jobs objects used in each of these is described below. 

2.1.5.1.1 One Operation on Single Device 

A single Jobs object is created. This is called a "per-operation" Jobs object. 

»1 Microsoft Corporation. Ail rights reserved. 
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This diagram shows this arrangement. There is a single Jobs object. 




Note: This is different from SAK 2.5 AoP , where two objects would be created, using the 
hierarchy described in the next section. 

2.1.5.1 .2 One Operation on Multiple Devices 

This diagram shows this arrangement. The operation is run on a set containing m devices 
(where m > 1), named D1 through Dm. 

A Jobs object is created to represent the overall status of the job across all devices. This is 
called a "multi-device single-operation" Jobs object. 

m Jobs objects are created, each one representing the status of the job on a particular device. 
These objects are called "per-operation" Jobs objects. They are direct children of the "multi- 
device single-operation" Jobs object. 




A total of m+1 Jobs objects are created. 

2.1.5.1.3 Sequence on Single Device 

This diagram shows this arrangement. The sequence Seq1 comprises n steps (where n >= 1), 
labeled S1 through Sn. 

A Jobs object is created to represent the overall status sequence. This is called a "single- 
device multiple step" Jobs object. 

n Jobs objects are created, each one step of the sequence. These objects represent either a 
single operation on a single device (a "per-operation" Jobs type) or a sequence on a single 
device (a "single-device multiple step" Jobs object). These objects are direct children of the 
"single-device multiple step" Jobs object. 

If any of these child Jobs represents a sequence, that sequence also has children jobs. In the 
diagram, a prototype step n of Seq1 is assumed to be another sequence. This other sequence 
is called Seq2 and has n' steps. Any of the steps in this sequence may itself be another 
sequence, so the hierarchy of Jobs objects may continue to indefinite depth. 
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2.1.5.1.4 Sequence on Multiple Devices 

The structure is the same as above, but now there is a parent Jobs object to represent the 
state across all devices on which the sequence is being run. 

This diagram shows this arrangement. The sequence is run on a set of m devices, named 
D1 ...Dm. The sequence Seq1 comprises n steps (where n >= 1), labeled S1 through Sn. 

A Jobs object is created to represent the overall status sequence across all devices. This is 
called a "multi-device multiple step" Jobs object. 

m Jobs objects are created to represent the overall status of the sequence on each individual 
device. These are called a "single-device multiple step" Jobs objects. 

Under each of the m single-device, multiple step Jobs objects, n Jobs objects are created, 
each one representing a single step of the sequence. These objects represent either a single 
operation on a single device (a "per-operation" Jobs type) or a sequence on a single device (a 
"single-device multiple step" Jobs object). These objects are direct children of the "single- 
device multiple step" Jobs object. 

If any of these child Jobs represents a sequence, that sequence also has children jobs. In the 
diagram, a prototype step n of Seq1 is assumed to be another sequence. This other sequence 
is called Seq2 and has n' steps. Any of the steps in this sequence may itself be another 
sequence, so the hierarchy of Jobs objects may continue to indefinite depth. 
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2.1 .5.2 Summary of Types of Jobs Objects 

This section summarizes the types of Jobs objects. In these descriptions, "direct children" 
means immediate children of the object (not children-of-children, for example). 

■ 'Multi-device multiple-steps" Jobs objects 

This type represents the overall status of the sequence across more than one target 
device. It will have one or more children. 

Parent: None. 

Direct children: One "single-device, multiple steps" Jobs object per devices on which 
the sequence is run. 

■ "Single-device multiple-steps" Jobs object 

This type represents the overall status of the sequence on a single target device. If the 
sequence is run against a set, this type is the root Jobs object and has no parent. 
Otherwise, it has a parent of type "Multi-device Sequence". 

Parent: None, or "multi-device, multiple-steps". 

Direct children: One for each step in the sequence. Each child may be of type "per- 
operation" or "single-device, multiple step". If of the later type, will itself have children. 

■ "Multi-device single-operation" Jobs objects 

This type represents the overall status of a single operation across more than one 
target device. It will have one or more children. Each child is a "per-operation" Jobs 
object. 
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Parent: None. 



Direct Children: One "per-operation" Jobs object per device on which the operation is 
run. 

■ "Per-operation" Jobs object 

This type represents the status of a single operation running on a single device. It has 
no children. 

Parent: None, or "multiple-device, single operation" or "single-device, multiple steps". 
Direct children: None. 

Since the per-operation type has no children, it is also sometimes called a "leaf-node" in the 
Jobs tree. The other types always have children, and are called "parent nodes". The top-level 
node in any hierarchy (the one with no parents) is called the "root node". 

2.1.5.2.1 Examples 

The following diagrams show some example Jobs object hierarchies. The sequence 
definitions are given in a compressed pseudo-code. 

In all these examples, the next available JobID is assumed to be 1 , and it is assumed that 
each Jobs object created gets the next JobID in sequence. In practice, the next available 
JobID may be any value, and JoblDs may not be sequential, however they will always be in 
the same order. 

2. 1.5.2. 1. 1 Example: Single Operation on One Target 

If a single operation (such as run a script) is run against a single servier, ServeM, it creates a 
Jobs hierarchy like this (assuming that the next available JobID is 1). 



Since this is run on a single target, only a single Jobs object is required to hold the complete 
status of the job. 

2. 1.5.2.1.2 Example: Single Operation on Multiple Targets 

If a single operation is run against the two devices called Serverl and Server2, it creates a 
Jobs hierarchy like this (assuming that the next available JobID is 1). 
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2.1.5.2.1.3 Example: Simple Sequence on One Target 
Task sequence "A" consists of two steps: 

■ Step 1 - run a script 

■ Step 2 - run a script 

If this sequence is run against the device Serverl, it creates a Jobs hierarchy like this 
(assuming that the next available JobID is 1). 




Since this is run on a single target, there is no "multi-device sequence" Jobs object to 
represent the status across multiple devices. 

2.1.5.2.1.4 Example: Sequence Hierarchy on One Target 
Task sequence "A" consists of two steps: 

■ Step 1 - run a script 
a Step 2 - run a script 

■ Step 3 - run task sequence "B" 
Task sequence B consists of two steps: 

■ Step 1 - run a script 

■ Step 2 - run a script 
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If sequence "A" is run against the device Serverl , it creates a Jobs hierarchy like this 
(assuming that the next available JobID is 1). 




The third step is another task sequence, so rather than being a per-operation Jobs object, the 
third step is a per-sequence Jobs object, which represents the status of sequence "B". 

2. 15.2. 1.5 Example: Simple Sequence on Multiple Targets 
Task sequence "A" consists of two steps: 

■ Step 1 - run a script 

■ Step 2 - run a script 

If this sequence is run against a set that contains two devices called Serverl and Server2, it 
creates a Jobs hierarchy iike this (assuming that the next available JobID is 1). 




2. 15.2. 1 6 Example: Sequence Hierarchy on Multiple Targets 
Task sequence "A" consists of two steps: 
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■ Step 2 - run a script 

■ Step 3 - run task sequence "B" 
Task sequence B consists of two steps: 

■ Step 1 - run a script 

■ Step 2 - run a script 

If sequence "A" is run against a set that contains two devices called Serverl and Server2, it 
creates a Jobs hierarchy like this (assuming that the next available JobID is 1). 




2.1.5.3 Jobs Status 




Each Jobs object contains four fields used for status information. These are: 

■ State 

The current state of the operations that this Jobs object represents. 

■ Children Count 

The number of direct children of this Jobs object. 

■ Children Completed 

The number of direct children of this Jobs object that have completed. 
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■ Children Errors 



The number of direct children of this Jobs object thai are in an error condition (also 
called "errored")- 



The specific meaning of these four fields for each type of Jobs object is given below: 



Jobs 
Object 


State 


Children Count 


Children 
Completed 


Children Errors 


Per-operation 


Ready to Run 

Unable to Start 

Running 

Completed 

Stopped 

Failed 

Canceled 


Not used 


Not used 


Not used 




Ready to Run 
Running 
Completed 
Failed/Errored 


devices on which 
operation is to be run 
(count of direct 
children) 


which have completed 
successfully (count of 
direct children where 
status is set to 
Completed) 


which the operation did 

(counl of direct children 
where status is set to 
Unable to Run, 
Stopped, Failed, 
Canceled or Timed 
OuS) 


Single device, 
multiple steps 


Ready to Run 
Running 
Completed 
Failed/Errored 


Total number of steps 
to be run (count of 
direct children) 


Number of steps which 
have completed 
successfully (count of 
direct children whore 

Completed) 


Number of steps on 
which the operation did 
not start or errored 
(count of direct children 

Unable to Run, 
Stopped, Failed, 
Canceled or Timed 
Out) 


Multiple 
multiple steps 


Created 
Ready to Run 
Running 
Completed 
Failed/Errored 


Total number of 
devices on which 
sequence is to be run 
(count of direct 
children) 


Number of devices 
which have completed 
successfully (count of 
direct children where 
status is set to 
Completed) 


Number of devices on 
which the sequence 

(count of direct children 

Unable to Run, 
Stopped, Failed, 
Canceled or Timed 
Out) 



Implementation note: State is part of the database. The others may be calculated or cached by 
the WMI layer depending on performance and other issues. 

2.1.5.3.1 Per-Operation (Leaf-Node) Job State Definitions 

The per-operation Job object represents a single process on a single target system . It can be 
in one of eight states. The states are: 



:re of the other Jobs objects in 



The operation has been started, bt 



I 



The operation has been started 
The operation has completed ar 



The operation was canceled by the user before it could be started 



ie started on the target device 



The operation was killed by Bie system wl 



The operation was stopped by Bie user white 



are given in this diagram. 




States are show in black rectangles. The transitions are shown as think arrowed lines. The 
causes of the transition are shown in the dashed ovals. If everything goes well, the states that 
the operation goes through are given on the left side (Created, Ready to Run, Running and 
Completed). 

If something goes wrong, the operation will enter one of the four "error" states on the right- 
hand side. 

The details of each state are given below. 

■ Created 

New Jobs objects are assigned this state. 

■ Ready To Run 
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The controller Is starting this job, but it is not yet running on the target device. This 
state only applied for PXE actions, this occurs until the PXE request has been 
received from the device. 

■ Unable to Start 

If the controller was unable to send the job to the target, or the target sent a reply 
saying it could not start the job, the status Is set to Unable to Start. 

■ Running 

if the target responds that it started the process , the status for the job is set to 
Running. 

Once the job is in this state, the controller collects output from the job. Output is of 
three types: standard output, standard error, and exit status. 

■ Completed 

If the controller receives an exit status from the target device for this job, the status is 
set to Completed. This means that the process has exited successfully on the target. 
The job is now finished. 

■ Failed 

If the process on the target device exits unexpectedly (for example, if it is killed by the 
system or a user), the status is set to Failed. 

■ Stopped 

If, while the job is running, the user calls the method to stop the job, the controller will 
send a request to the target to stop the job. If the target retu ms that it killed that job, 
the status is set to Stopped. 

Note: the controller does not set this status until the agent responds that the process 
has been killed. This is because the process might exit normally before the 'stop' 
request is received at the target - in which case, we shou Id report the success of the 
process. 

■ Canceled 

If the user stops a job that is in Ready To Run state, the status is set to Canceled. 
This is different from Stopped status, which means that the job did start running by 
was stopped before it completed. 

■ Timed Out 

Time-out period expired before job completed. 

When we talk about roliing-up the status of operations into parent Jobs object, we are 
concerned with four"meta-sfates": 

MICROSOFT CONFIDENTIAL ©2001 Microsoft Corporation. All rights reserved. 

By using or providing reedback on these materials, you agree to the attached license agreement (also available at 
httpJ/vvww.miaosot.ccmfliconsing/specsfagrmt01 .asp). 



■ Net Yet Started 

■ Running 

■ Completed 

■ Errored 

This diagram shows how the meta-states relate to the states: 




2.1.5.3.2 Parent State Definition 

Parents can be in one of five states: 



State 


Meaning 


Created 


When Jobs object is first created 




When any one child is in the Running state 


Completed 


When every child is in the Completed state 




User stopped the iob before it completed 


Failed 


When any one or more child is in Running state and one or more is in 
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The details of each state are given below. 

■ Created 

New Jobs objects are assigned this state, until every job in the hierarchy has been 
created. 

a Running 

As soon as any one or more children move into the Running state, the state will be 
updated to Running. 

The children that are running may move into the Completed, Stopped, Killed or 
Failed/Errors. 

■ Completed 

All the children are in the Completed state. 

■ Stopped 

Any one child is in the Stopped state (that is, it was stopped by the user) and all other 
children are Created or Running. 

■ Failed 

If any one or more children enter an errored state (Canceled, Killed, Stopped, Timed 
Out or Failed/Errors), then the status is set to Failed. 

If this Jobs object represents a task sequence, then this state means that the 
sequence did not complete. The "Children Completed" value can be used to 
determine what step of the process was last completed (if any). 

If this Jobs object represents a job across multiple devices (either a tasks sequence 
on multiple devices, or an operation on multiple devices), this state means that one or 
more device either could not run the operation or sequence or the operation or 
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sequence failed while running (either killed by the system or stopped by the user). The 
"Children Completed" value contains the number of devices on which the sequence or 
operation completed successfully. The "Children Errors" value contains the number of 
children on which the sequence or operation failed to complete successfully. 

Note that the operation or sequence may still be running on other devices. To check 
to see if any devices are still running the operation or sequence, the user must check 
the "Children Count", "Children Errors" and "Children Completed" values. 

2.1.6 PXE Boot Actions and Default Sequences 

This section only applies when ADS is being used in a PXE environment. 

When a device does a PXE boot, what it is told to do depends on several settings on the 
controller. These settings are the PXEBootAction for this device, whether there is PXE job 
waiting for this device, or whether there is a per-device or system-wide job template to run. 

The details of how the boot action is determined is given below for a given device doing a PXE 
boot. (This assumes that the PXE record has been matched to a specific device record - how 
this is done is defined in the Auto-discovery specification). 

1 ) Check the setting of PXEBootAction setting for this device. 

■ If this is set to 'Ignore', then the PXE server will never respond to this device. This 
takes this device out of control by the ADS system. END. 

■ If this is set to 'Respond, move onto the next step. 

2) Check to see if there is a job currently running against this device (CurrentJobID in the 
database). There are three possible situations: 

■ There is a job currently running, a nd that job is a PXE job. I n this case, this job 
determines the action to take. It can be one of boot to hard disk, boot to 
deployment agent, boot to virtual floppy or boot to third-party NBP. END. 

■ There is a job currently running, but that job is not a PXE job (it is a program, script, 
namespace command for the target or imaging server, or controller program). This 
is an error. END. 



Define behavior in this situation. Presumably log the error, and stop the sequence. Should it run the 
default job template? Probably not 



■ There is no job currently running, in which case move onto the next step. 

3) Check the value of the JobTemplate property of this device. This property contains the 
'per-device default job template' to be run when a PXE request is received. 

■ If the value is NULL or empty, move onto the next step. 
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■ Otherwise, start the job specified in the job template (it may be a sequence or a 
simple job). If there is no job template with this name, log the error below (%1 is the 
device name, or if no name, : '<unknown>" and %2 is the admin interface MAC 
address). END. 

"The JobTemplate specified for device with name %1 and MAC address %2 does 
not exist. It has been ignored. ' 

4) Check the value of the JobTemplate property of the Controller. This property contains 
the 'system default job template' to be run when a PXE request is received if there is 
no per-device job template exists. 

■ If the value is NULL or empty , move onto the next step. ' 

■ Otherwise, start the job specified in the job template (it may be a sequence or a 
simple job). If there is no job template with this name, tog the error below (%1 is the 
device name, or if no name, "<unknown>" and %2 is the admin interface MAC 
address). END. 

"The JobTemplate specified for device with name %1 and MAC address %2 does 
not exist. It has been ignored." 

5) No PXE action is available for this device, so it will time out from the PXE stage and 
move onto the next step of its PXE boot order. 



This is coirect? Or do we hold it in ibig.com forever? 

Should we log this? Will help with debugging what action is taken for a given device. 



2.1.7 Task sequence Implementation 

2.1.7.1 Examples 

The examples below show in XML how each different combination would be expressed. 

These are defined in the Remote Execution specification. If there is a conflict between these 
specifications, the Remote Execution specification should be used. 

■ Task Sequence 



Not supported 
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The TargetType and Delivery are always omitted. Internally, they default to 
TargetType=Controller, Delivery=None. 



■ Script or Program run on a Target Server 



tpaj-j]TCter:.ADDLCC^ 

Since Delivery is omitted, it is assumed to be "None" (that is, script or program is 
le to the device using the path given). 



■ Script delivered to over BMCP and run on a Target Server 

M rr t Acrean i - r .. >. . 11.1 

M/parametej ., : V 

To specify that the script is downloaded over the BMCP (SSL HTTP) link, Delivery is 
setto"BMePbmcrj". 

If a script or program run on the target (either delivery mechanism) is known to do a 
reboot, the doesReboot attribute must be set: 





r itiex igaew-l parar tet 

c/p?.)rr^.ctera>:. ............. 

-:/task= : :: : 

■ Script or Program run on the Controller 



Do noS know how to specify controller programs 




| n P ii„ a7 i S always nmiferi for Controller programs. Target must be set to 'controller'., 
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■ Native-mode Program run on a Target Server 



I • 

i 

</t**> v .v, ' . 

Delivery is always omitted for native-mode programs and defaults to None. Note that 
the doesReboot attribute is s et to true, since the reboot action will, by definition, cause 
the device to rebool. For the shutdown action f/bmonitor/shutdownl doesReboot 
sfrQuld b , e set to false. 

This is the same as a script or program run on a target device, except that the 
Command field contains a BMSS namespace instead of a file system or UNC path. 
The system can determine which it is by looking at the format of the Command field. If 
it starts with a slash, it is a native-mode namespace. 

■ PXE actions 



General format: 

<taek>' 
</f..w.> 

The TarqetType target and dDelivery are always omitted. 

2.1 .7.2 Task Sequence Architectural Description 

WMI interface provides the top-level object model and the end users can access the object 
model through one of the following: Control scripts, Web Ul and Custom applications that 
connects with WMI interface. The task sequence schema defines that the task sequence XML 
document can be either stand-alone or with references to other documents. So the task 
sequence author can produce either a single, self-contained document or a complex 
document that is a collection of multiple documents as modules. The complex document will 
be very useful for the following scenarios: 

■ To re-use the already existing task sequence modules that is designed to carry out a 
specific operation with a sequence of tasks. For example, Adding a user to a web 
server, Content replication on a file server, Creating a virtual root and configuring it, 
etc may be conceived as task sequence modules and the task sequence author can 
refer to these modules to achieve the end result through the use of either DTD entity 
referencing or XSLT. 

■ To produce the abstract task sequence with placeholders for the parameters. For 
example, task sequence author can produce a template task sequence document, 
parameter data document and a style sheet that def nes how to merge the template 
with parameter document to produce a meaningful task sequence document. 

■ Mix of the above two scenarios. 
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After the transformation or resolving the entity references, the resulting document is parsed 
and validated with the task sequence schema. Then the validated task sequence document is 
further transformed into a simplified, flat XML document. In this flat document, both Blueprint 
and Task elements have similar structure and the Blueprint elements have additional attribute 
ID which is sequentially numbered in the document order. This transformation is required for 
the following reasons: 

■ Since Blueprint and Task elements are of Jobs Type (per DB schema), child elements 
info-set under the Task element is transformed into attribute-set on the Task element. 
So this transformation makes both Blueprint and Task element confirming to the same 
pattern. 

■ This architecture exploits the SQL Server's XML support. Querying the XML data 
stream with XPath predicate and converting the resulting info-set into the record-set 
are carried out with the use of Transact-SQL Command "OPENXML" as a part of the 
stored procedure. As per the estimated execution plan for the sproc execution, 
retrieving record-set from XML data stream with XPath predicate consumes 95% of 
the total estimated cost (CPU, I/O, etc.). Without this transformation, this step will be 
repeated more than once, thereby reduces the performance unnecessarily. 

■ The transformation includes an attribute I D to the Blueprint element that is 
sequentially numbered in the document order. This ID info is useful to generate the 
ID-JobID lookup table and this lookup table is used to fill in the ParentJobID field for 
the child jobs. 

The transformed document is fed as an input to the stored procedure in the SQL Server that 
shreds the XML documents into Jobs and Joblnvocations table. Sproc is used instead of 
parsing and inserting the info-set into the Jobs and Joblnvocations tables as individual batch 
operations otherwise there will be a numerous batch operations like inserting a job record, 
inserting a jobinvocation record without duplication, retrieving the JobID and invocationID for 
the inserted Jobs and Joblnvocations records respectively, etc. These batch operations will 



become a bottleneck if the SQL server and Controller software are deployed on different 
server. 

2.1 .7.3 Reading a Task Sequence 

A task sequence is started by running the ExecuteTaskSequence method on either a Devices 
or Sets object. This method takes two external files: a sequence definition file and a sequence 
parameters file. The filenames of these two files are passed to the "job foader". 



The following steps are performed by the job loader if the task sequence is to be executed on 
more than one target device: 

1) Read the task sequence definition file and task sequence parameter file. If there are 
syntax errors in each file, the invocation of the task sequence fails. If either of the files 
does not exist, or is an invalid format, a WWII error is returned to the caller. 

2) A "Jobs" object for this workflow is created. This is called the "multi-device sequence" 
Jobs object and represents the overall state of the workflow across all target servers. 
Give this Jobs object the next available JoblD. 

3) For each target device in the Set: 

4) Create a "per-device sequence" Jobs object for each target device as a child of 
the multi-device sequence Jobs object. Give each Jobs object the next available 
JoblD. 

5) For each step in the task sequence definition:: 

6) Replace any variables in the Parameters field with their values. If the definition file 
refers to a parameter that is not defined, return a WMl error and delete any Jobs 
objects created for this sequence. 

7) The step is either an operation (e.g. run a script) or another task sequence. 

■ If the step is an operation: create a "per-operation" Jobs object for this step under 
the sequence Jobs object. Give each Jobs object the next available JoblD. 

■ If the step is a task sequence definition file: create a per-device sequence Jobs 
object for this task sequence, then start reading this task sequence file (effectively, 
this recourses to step 5 above. At the end of the included task sequence, go to the 
next step in the parent task sequence definition file). 
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If the task sequence is to be run on a single device (instead of multiple devices) then there is 
no "multi-device sequence" Jobs object. Steps 2 and 3 of the above sequence are not 
performed, at the per-device sequence job created in step 4 has no parent Jobs object. 



2.1.7.4 I mplementation Notes 
2.1.7.4.1 WMI Interfaces 

WMI interface exposes the following method under both target classes, Devices and Sets. 



Arguments: 

■ BlueprintPath - file path of blueprint xml document. 

■ StylesheetPath - file path of style-sheet path. It is optional. 
Return value: 

■ The RootJobID that represents the whole job sequence on the target. 

2.1 .7.4.2 Loading Task Sequence 

Blueprint xml document is loaded and parsed with DOM or SAX interfaces. If the stylesheet is 
specified, the Blueprint xml document is transformed as per the stylesheet. Then the document 
is then validated with the Blueprint schema in the Schema cache. The parsing and processing 
of the Blueprint XML document is implemented using MSXML 4.0 as part of the WMI Provider. 
Blueprint schema is loaded into the Schema cache when the WMI Provider is loaded and 



Execution of T-SQL batch commands and stored procedures are accomplished using OLE 
DB. They are implemented using OLE DB consumer templates in DB Accessor COM 
component. This component serves the DB accessing capabilities to both WMI provider as 
well as the Controller service. Serializing the Blueprint xml document into the Jobs and 
Joblnvocations table (XML shredding) is implemented in the stored procedure. 

After serializing the Blueprint xml document into the database, WMI provider invokes the 
ITaskManager::StartBluePrint method exposed by the Controller service. Blueprint Engine of 
the Controller service walks through the Jobs table executing the jobs sequentially till it either 
completes executing all jobs specified in the Blueprint or bails out if any of the jobs in the 
Blueprint encounters an error. 

2. 1 . 7.4.3 Executing Task Sequence 

The job loader is part of the database interface (sactlrdb). It has three functions, CreateJob, 
CreateBLJob and DeleteJob. 

■ JobID CreateJob(TargetType, TargetName, UserName, Delivery, CommandType, 
Command, Parameters, Description); 
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To create the single job 
a JobID CreateBLJob(TargetType, TargetName, UserName, XML); 
To create the jobs of task sequence. 

■ DeleteJob(JoblD); 

To delete the record of the job subtree from database. 

2.1.7.5 Runninga Task Sequence 

1) Run the first unexecuted Jobs object (lowest JobID value) under each of the workflow 
parent objects. If this Jobs object is a workflow parent, run the first unexecuted Jobs 
object under this parent. 

2) For each target server (i.e. each set of Jobs objects under the workflow parent object), 
wait for the previous job to complete. When it completes, go to step 7 if there are any 
more unexecuted Jobs objects under this workflow parent. 

2.1.7.6 Implementation Notes 

The job engine includes the job processor in sactlr.exe and the job object in sactlrdb.dll. The 
engine will execute and update the job tree in database. 

2.1.7.6.1 APIs 

Three API s in the job engine: 

a Start Job(JoblD); 

First, set the state of the job subtree from 'created' to 'ready to execute'. 

Second, start to run the first job in the subtree; if the job command type is 'wait 
pxeboot', copy the command from Joblnvocations table to devices table. 

a CancelJob(JoblD); 

To set the state of the job subtree to 'canceled' if it has not started to execute. 

■ StopJob(JoblD); 

To find and stop the running job in the job subtree and set its state to 'stopped'. 

2.1.7.6.2 Workflows 

Four job workflows in the job engine: 
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2.1.7.6.2.1 Getjob messages from bmclient. 




Job finder will find the next job id whose state is 'ready to execute' based on the id number 
from the completed job id. 



2. 1.7.6.2.2 Get reboot messages from discovery. 




First, job finder will find the completed job id based on device id, its job type which is the 
'wait rebooted', and its job state which is the 'running'. 

Second, job finder will find the next job id whose state is 'ready to execute' based on the id 
number from the completed job id. 
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2.1.7.6.2.3 Pxeboot 




Pxeboot 
request 



Pxeboot server 



Pxeboot 
action 



First, the store procedure will return the pxeboot action from Devices table to pxeboot 
server, and trigger another store procedure. 

Second, store procedure will find the completed job id based on device id, its job type 

which is the 'wait rebooted' , and its job state which is the ' running'. 

Third, store procedure will find the next job id whose state is 'ready to execute' based on 

the id number from the completed job id. 

Forth, store procedure will set the state of next job to the 'running'. 

Fifth, if the next job is also the 'wait pxeboot', store procedure will copy the command in 

the Jobinvocations table to the Devices table. 



2. 1. 7.6.2.4 Other job completed notifications 



Job completed notification, 
Such as job run on controller, job run on 
image server... 



Job finder will find the next job id whose state is 'ready to execute' based on the id number 
from the completed job id. 



2.2 Ul DESCRIPTION 

Task sequences are exposed to the user through the methods described in the Object Model 
specification. This specification contains no Ul. 

2.2.1 XML Schemas 

See section 2.1.4 
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Functional Overview 



1 .1 ADS AND THE MICROSOFT SCALE-OUT VISION 



Overtime the scale out services team will work separately, and in combination with other 
Microsoft and industry partners, to deliver a set of tools and a platform that significantly improve 
the way service providers and enterprise customers build, deploy and operate highly available 
and scalable services. Core to that platform will be the ability to rapidly purpose, administer 
and then re-purpose large numbers of windows servers in a datacenter environment. 

As a first step towards addressing this platform need. Microsoft is adding an enhancement to 
the . NET server platform called ADS. 

ADS is an enhancement to the .NET server platform that provides a programmatic way to 
automate the deployment and administration of large numbers of Windows 2000 and .NET 
Servers. As a platform, it can serve as the basis for an automated solution developed by a 
datacenter administrator or as an enabling technology that is key to an IHV or ISV deployment 
solution. The target end customer is a service provider or high end datacenter administrator 
who faces a unique set of challenges associated with deploying and maintaining 100s or 
1000s of Windows Servers. 

ADS provides data center administrators a programmatic way to remotely deploy operating 
systems to bare-metal servers, configure the systems (including use of DOS-only utilities) and 
enables a base level of management and maintenance of servers containing a full O/S. 
IHVs and ISVs will now be able to leverage the low level functionality provided by ADS through 
a rich WMI interface and focus their resources on developing complete, intelligent, 'but-of-the 
box" solutions that address the numerous deployment and administration needs of the broad 
Windows Server user community. 



1 



1.2 FEATURE SUMMARY 

There are two generic operation capabilities that ADS will provide for Windows 2000 or 
p^Vindows .NET servers in the data center environment: 

I ■ The ability to remotely purpose a system from bare metal to a useful state, or 
I repurpose a system from one state to another state 

I ■ The abil ity to run extensible and configurable operations (scripts etc) on one 
more systems from a single point of control and centrally collect those results 

In addition to the core framework that is described below Microsoft will provide solutions to a 
select number of scenarios which may include: 

■ Purposing a system from bare metal to having an O/S running with basic parameters 
configured (name, etc) 



tor 1 

"J 



MICROSOFT CONFIDENTIAL. ©2001 Microsoft Corporation. All rights reserved 

By ushg cr providing, feedback on those materials, you agree to the attached Sccnse agreement (also available al 
http:tf*ww microsoft coml censJio/spec&ragrmtOI .asp). 



5 



■ Querying systems and applying the appropriate hot fixes or O/S service packs to systems 
and images 

■ Repurposing existing system for a new function 

To implement the above, the product is broken down into four major functionality blocks: 
imaging, secure deployment, task sequencing and remote script execution. Functionality of 
those blocks is as follows: 

■ Imaging: The ability to capture and manage Windows 2000 and Windows .NET Server 
images through standard Win32 tools, used either locally or remotely 

■ Secure Deployment: The ability to remotely boot a system, configure its BIOS, RAID and 
hard disks, and securely deploy a base O/S image 

• Autodiscovery. Ability to find booting servers on the network, and either treat them as 
a new system or map them to an existing system. 

. Virtual Floppy: Ability to configure BIOS, RAID and hard disks by running a self- 
contained DOS O/S (logical equivalent of putting a physical floppy into the system). 
Scriptable DOS RAID and BIOS tools must be obtained from the hardware vendor. 
These are not supplied as part of ADS. This feature requires that the system supports 
PXE. 

. Network Boot: Ability to remotely boot a system and determine whether it should run 
the deployment agent or boot into the O/S on hard disk. This feature requires that the 
system supports PXE. 

. Non-PXE support: Ability to store the management OS on a partition on the system , 
for situations where PXE is not supported in the production environment. 

■ Task Sequencing: The ability to define and administer a set of tasks to take a server 
through the deployment, imaging, and post-O/S configuration/administration steps 
required to build a complete server. 

■ Remote Task Execution: the ability to securely execute scripts or programs on a remote 
set of servers and centrally capture and record the results. 

In addition to the above functionality blocks, there are a number of capabilities that cut across 
the entire product. 

■ Rich Programmatic Interface: As part of the overall ADS architecture a comprehensive 
WWII interface is provided. This enables all of the functionality to be programmatically 
driven from both script and compiled languages. 

• Setup: the ability to install ADS 

■ Sam pies/Scenario: the samples we provide with the product to enable customers to get 
started fast addressing real problems they are experiencing 

■ Documentation: on how to use the product 
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Security: apart from PXE and DHCP (which are standard protocols), all communication 
between servers under control of ADS and the ADS infrastructure servers is encrypted. 
Images can be encrypted. 

Localization: the initial version will be available in English only, although deployment of 
localized versions of Windows may be supported. Later releases may be available in 
additional languages. 



2 Architectural Overvi 



2.1 NETWORK ENVIRONMENTS 

ADS supports both PXE and non-PXE environments. A PXE environment is one where the 
servers in the data center support PXE version 0.99d or higher. If the services support PXE, 
the data center administrator must make a decision about whether to use PXE, taking into 
account the security risks of the protocol. If PXE is used, it is recommended that the PXE NIC 
is connected to a management network that is kept more secure that the production network. 
Advantages of using PXE include: 

■ Complete headless, remote administration of devices from bare metal to full OS 

■ Support for virtual floppy disks to allow for BIOS and RAID re-configuration 

■ Support for remote repartitioning and reformatting of hard disks 

Primary reasons for not using PXE would be due to security considerations or because the 
data center servers do not support PXE functionality. 



If PXE is used, the administrator must determine the size of the "DHCP domain". This is the 
scope of the network that receives a DHCP broadcast from another computer in that scope. By 
default, the DHCP domain is the same as a subnet or VLAN. However routers can be 
configured to forward DHCP broadcasts between subnets and VLANs. 

Whatever size of DHCP domain is selected, a computer running the Network Boot Services 
(NBS) is required within each DHCP domain. The NBS must be connected to the network that 
is used for PXE broadcasts by the servers. 

In addition to the Network Boot Services computer in each DHCP domain, a computer running 
the Controller service and Image Distribution service (IDS) must be deployed. The Controller 
must be able to communicate with the NBS in each DHCP domain, every device within each 
DHCP domain, and the Image Distribution service. 

This diagram shows a typical network comprising multiple DHCP domains, showing the ADS 
infrastructure computers required. Note the Controller service and Image Distribution service 
may be co-located on the same computer. This diagram shows only the management 
network, not the production network (if they are different). 
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2.1.2 Non-PXE 



If PXE is not going to be used, then the administrator can still use ADS to remotely deploy 
operating systems to servers, and administer them. However there are some limitations; 

■ In certain failure modes (e.g. hard disk failure) will cause the server to become 
unmanageable from the remote controller. 

■ Virtual floppy is not supported, so remote BIOS or RAID configuration is not possible 

■ A management OS must either be pre-installed into a partition of the hard disk, or installed 
into a partition just before being used (which might involve storing data previously in that 
partition, and later restoring it. 

■ The hard disk containing the management OS cannot be repartitioned 

■ Some disk space will be taken up by the management OS, reducing available disk space 
for the full OS or data 

If these limitations are acceptable, then non-PXE environments can be supported. In ADS, 
non-PXE production environments are supported by installing a management OS onto the 
hard disk of the server using PXE. This is typically done in a staging area. Then the server is 
deployed to the data center. From this point forward it can be administered remotely from the 
controller, to allow the full OS to be downloaded, configured, boot, and then administered 
(subject to the limitations given above). 

In this environment, the Network Boot Services do not need to be installed, so there is no need 
for this server in each domain DHCP. 

2.2 ARCHITECTURE 

The ADS system consists of four main parts, as shown in this diagram: 
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For environments where PXE is being used, a computer running Network Boot Services 
(NBS) is required in each DHCP domain. The NBS enables a device to remotely boot up to 
the OS on disk, a virtual floppy, or to the deployment agent, tn environments with a single 
DHCP domain, the NBS may be co-located same computer running the Controller service. 
Internally, the NBS comprises the ADS PXE service and the Deployment Agent Builder 
service. It also contains a TFTP service holding a library of network boot programs, virtual 
floppies disk images and auto-created deployment agent images. 

The Controller service keeps a master record of computers in the data center, how they are 
arranged, what actions to take on next boot, and what operations can be performed on each 
target server. It acts as the control point for the ADS system and the target servers in the data 
center. The Controller service runs on a computer called the Controller. The Controller 
service uses a database to store its information. This database can be either an instance of 
MSDE located on the Controller, or an instance of SQL Server 2000 located locally or 
remotely. MSDE comes with ADS, while SQL needs to be licensed separately. 
The computers within the data center that are to be managed from the controller are called 
devices. Each device can be controlled by at most one controller. Multiple controllers may be 
used in the environment, but they do not communicate between themselves, so the 
administrator is responsible for configuring each controller to know which devices it can 
manage. 

The Image Distribution service (IDS) is used to store images that can be deployed onto the 
devices' hard disks. Each Controller service works with exactly one image Distribution service. 
The IDS may be co-located with the Controller services on the Controller computer, but for 
performance reasons it is recommended that the IDS be located on a separate system. 
The Controller service, Network Boot Services and Image Distribution service are collectively 
called the ADS services. They may be installed only onto computers running Windows .NET 
Server 2003 Enterprise Edition or Data Center Edition. ADS also includes additional 
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components such as administration tools, imaging toots and documentation than may be 
installed on a wider range of operating systems. 

In PXE environments, a DHCP service is also required. This is not part of the ADS feature. It 
may be on the same physical system as the NBS. A DHCP server is part of Windows NET 
Server 2003 Enterprise Edition and Windows 2000 Advanced Server. A computer running the 
DHCP service is required within each DHCP domain. 
This section explains how these components work together. 
2.2.1 Bare-Metal to O/S Architecture - PXE 

This section describes how a target server goes from having no operating system installed 
("bare-metal") to being fully configured and ready to perform useful work - a process called 
"purposing". It assumes that PXE is supported, and that the server has been placed into the 
data center, cabled and powered on. 

Purposing a server typically consists of four stages. First is doing a PXE boot. The second is 
optionally loading and running one or more virtual floppies to perform DOS-level configuration. 
The third is booting into the deployment agent running in memory and downloading and 
configuring an OS final image onto disk. The fourth is booting into a final image (on the hard 

disk). 

2.2.1.1 PXE Boot 

When a target server is booted, it must make itself known to the ADS PXE service (part of the 
Network Boot service or NBS). This is done using PXE. . 

The following diagram shows how the PXE boot process works. The labeled parts (1A) etc are 
referenced in the description that follows. 
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The target server boots using PXE, using a DHCPDISCOVER message request 
supplemented with an option identifying itself as a PXE client (1A). The packet contains the 
MAC address and SMBIOS UUID. 

This is received by both the DHCP service and the ADS PXE Service. The DHCP service may 
respond with a broadcast DHCPOFFER message containing IP configuration for this target 
server (1 B). Simultaneously, the ADS PXE service will process the discovery message. Using 
the MAC address in the discover message, it may decide to ignore the request, or respond to 
it. If it decides to respond, it will send an initial program called a network boot program (NBP) 
(1C to 1E). This may be an NBP defined by the user, or the ADS NBP, which is called 
startnbs startnbs polls the PXE service for its next boot action. 

During the polling process, the client returns to the PXE service and requests boot selection 
instructions. The PXE service opens a session with the ADS infrastructure and queries for 
boot action (1F). 

The controller can tell it to do one of three things: 

* Tell the target server to continue its BIOS boot sequence, that is, exit PXE 

■ Tell the target server to down load and boot into the deployment agent 

■ Tell the target server to download and boot into a virtual floppy 

■ If no response is received within five minutes, the target computer is rebooted. 

The first option is boot-poiicy is returned to direct the target computer to boot next BIOS boot 
device. Typically, this is the O/S image on the hard-disk. 

The second and third options are described below. 

A unique feature of the ADS PXE service is its flexibility to be configured to answer all 
broadcast requests, ignore ail, or to be programmatically configured through the controller's 
object model specifying boot policy on a per device (target computer)_basj s or sot (co lle ction of 




2.2.1 .2 Virtual Floppy Support 

If the controller tells the ADS PXE service to download a virtual floppy, the ADS PXE service 
tells the startnbs NBP to download and run a virtual floppy. The name of the TFTP server and 
filename containing the virtual floppy image is supplied to the NBP by the NBS. The NBP 
requests the virtual floppy image from the TFTP server (2A and 2B). This is sent to the target 
server where it is stored in memory. The system then "boots" into the virtual floppy code, in 
DOS mode (2C). 

The virtual floppy is an image of a bootable DOS floppy. It can contain DOS-based utilities that 
cannot be run within the deployment agent or target OS, and can be used to run BIOS 
upgrades, make BIOS configuration changes, or configure the RAID controller ADS does not 
come with any tools to enable this, other than the virtual floppy support. The tools would come 
from the hardware vendor, and must be capable of being run from DOS without user 
interaction. The user is responsible for creating the virtual floppy image, including ensuring that 
the tools can called with the correct parameters when the virtual floppy is 'booted' (typically, by 
calling the tools from AUTOEXEC.BAT). 

Once the virtual floppy tools have completed, the script run on the virtual floppy must do a 
reboot (2F). This will cause the server to start the boot process again with a PXE request - 
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stage 1A. The controller state for the target server might have been updated to this time tell the 
target to either download and run a different virtual floppy, or to boot into the pre-OS. 
Note that the controller has no way to know whether the virtual floppy completed successfully 
or not, since there is no communication from the DOS environment to the ADS controller. This 
is for security reasons, since the virtual floppy cannot authenticate itself to the controller. 
However the author of a virtual floppy script might make use of an unsecured share to 
communicate with the controller. The user would be responsible for implementing this, and for 
checking the results on the share from the controller. 

The controller will maintain state information to determine what action to take on this boot, 
which might be more configuration steps, or it might be the downloading of a final OS image] . _ 



- Comment [CN1]: How does controller keep 
accurate stale when system hangs and WD 
fires or power is cycled and step does not 
complete succes sfully? 




2,2.1 .3 Deployment Agent Download and Run 

If the controller tells the network boot server to download the deployment agent to the target 
server, the ADS PXE service tells the sfartnbs NBP to request the NT loader (3A) from the 
TFTP server (3B). This NT loader gathers some hardware information about the system and 
requests (3C) an OS image from the Deployment Agent Builder service. The deployment 
agent builder service dynamically builds a Deployment Agent and tells the loader where to 
obtain it from (3D). The loader then gets the agent and places it into the memory of the target 
server (3E). The deployment agent builder service caches a copy of this deployment agent 
instance for other target servers with the same hardware characteristics. 
The deployment agent is started, running from memory on the target server (3F) and 
announces itself to the controller using autodiscovery (3G) and establishes secure 
communication with the controller. The controller can now send commands (3H) to the 
deployment agent to do things like partition the hard disks, format volumes, and download 
images (31). 
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Downloading a image would consist of sending a job to the deployment agent. This will tell the 
deployment agent to run an image client utility. This utility requests an image from the Image 
Distribution service (IDS). The IDS contains a library of previous captured operating system 
images. The IDS sends the image from the to the target server, writing it to the partition 
specified in the command, After the image is downloaded, other jobs will typically be run to 
configure the OS (for example, to se the hostname and domain name). 
When all the configuration tasks are complete for this invocation of the deployment agent, the 
deployment agent will be told to reboot the target server (3J). This will revert back to the initial 
PXE boot. Typically the controller will be updated so that on this boot, the target server is told 
to boot into the target (full) OS. 

2.2.1.4 Target (Full) OS Boot 

On this reboot, the target server again announces itself to the ADS PXE service. This again 
asks the controller what action to perform. If it allows the target server to continue to boot, the 
final OS will boot on the target server. 

It boots into the OS on the hard disk (4A). If this OS contains the ADS Administration Agent 
service, it will tell the controller that it has booted, using autodiscovery (4B). The controller can 
now send additional remote execution tasks to the target server (4C), for example, to 
download additional images (4D), or run unattended installs, or to make configuration or 
provisioning changes. 

The system is now purposed and ready for use in the data center. If the image contained utility 
agents (such as an SMS agent) it can now be managed remotely by SMS or other 
management applications. 
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If the system ever reboots, it will go back to stage 1. The Controller service can be configured 
to specify what action is to be taken if the system does reboot, such as booting back to the 
hard disk, or running the deployment agent. 




2.2.2 Remote Task Execution 

In order to work with hundreds or thousands of computers in a data center, the administrator 
applies a logical organization to the computers. There may be multiple organizations of 
computers for a single data center {for example, by customer or by function). The organization 
of computers is stored on the controller by placing the computers into sets. The administrator 
can work with sets of computers as if they were a single computer (to some degree). 
The controller can tell one or more devices to perform an operation. The controller monitors 
the progress of the operation and stores the results. An operation to be run on a target OS can 
be a script, program, or a special operation {such as reboot). The system comes with a 
number of sample agent scripts to perform common typical configuration tasks, and the 
administrator can additional scripts or programs as desired. The special operations are 
defined by the system and cannot be changed. 

Remote tasks can be run on a target server when it is running the deployment agent, or when 
it is running a full OS which contains the administrative agent. In the deployment agent, the 
only tasks that can be run are the internal operations: 

■ Reboot the server 

■ Shutdown the server 
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■ Partition the disks 



■ Download an OS image to a disk partition 

■ Personalize the 'sysprep.inf file 

When the administrative agent is running inside a full OS, the following additional tasks can be 
run: 

■ Download and run any script 

■ Run any Windows program stored on a local disk 

■ Run any Windows program stored on a UNC share 

The status and complete i 
on the controller. 

2.2.3 Task Sequences 

A task sequence is a sequence of operations to be performed in order. The sequence 
definition is stored in an XML file on the controller. The administration can specify that a 
sequence is to be run on one or more destination servers. The controller manages the status 
of each sequence, ensuring that each step is completed successfully before moving onto the 
next step, for a given destination server. 

Sequences can include any operation that can be performed on a destination server, including 
specifying whether the destination server is to boot into a virtual floppy, the deployment agent, 
or the on-disk OS. So a task sequence can be used to take a server from bare metal through 
to running a full OS, without any administrator intervention. 

2.2.4 Imaging 

■m 

Imaging support within ADS comprises a library of tools to capture, edit and write images. The 
tools to capture and deploy images can be used 'standalone' {from within Windows), or can be 
used under control of the ADS controller. The latter allows for the remote capturing of OS 
images, or remote deployment of images to one or more destination servers. 
Capturing and deploying images uses 'sysprep', which is part of the Windows Server OPK. 
Some applications cannot be imaged, so this cannot be pre-irsstalled onto the image {however 
they may be installed once the image is deployed, using unattended install). Images can be 
captured that will work on different hardware, within limits. The main limits are that hardware 
that requires different hardware abstraction layers (HALs) and hardware that uses a different 
mass storage device for the boot partition will require different images. 



The image distribution service {IDS) is used to download the target OS image. The controller 
runs an operation on the administration agent which called the IDS client utility to request the 
file from the IDS server. 

If an image is to be deployed to multiple devices at the same time, multicast can be used to 
send the image over the network. Using multicast may require routers to be configured 
appropriately. For situations where multicast cannot be used, images can be sent out using 
unicast. 
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2.3 Ul DESCRIPTION 



ADS will have an MMC snap in Ul that enables administrators to access a majority of the 
functionality described in this document including: 

. Monitor devices/states 

• Group and manage sets of devices 
. Run jobs, task sequences 

. View results of jobs, task sequences 

• Manage imaging 

2.4 API AND INTERFACES 

This diagram shows a simplified view of how the Command Line Tools, Task Sequences 
and Object Model specifications relate. With a few exceptions, all functionality of the 
Controller service, Network Boot Services and Image Distribution service are exposed in 
the object model. The Command Line Tools (and the graphical user interface - not 
shown) are built on top of the object model. 




3 Usage Scenarios 



The following sections illustrate how some common server provisioning tasks might be 
implemented using ADS as the basis of a complete solution. 
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3.1 DEPLOYING 



Assumptions: ADS controller and IDS installed. NBS and DHCP installed and configured. PXE 
boot can be supported either in hardware, or by keeping a PXE boot floppy in the device. 

1) New server is powered on. 

2) Server PXE boots. The administrator has already entered a record for this server on 
the controller, and associated it with a task sequence to be run when the server PXE 
boots. The task sequence is now invoked, and the following steps performed 
automatically. 

3) A pre-created virtual floppy image is downloaded to the destination server and run, to 
configure the BIOS and RAID. At the end of the virtual floppy, the server reboots. 

4) The deployment agent is down loaded to the destination server and started , 

5) The deployment agent is told to repartition the disks, then to request an OS image 
from the IDS. Once the image is downloaded, the agent is told to personalize the 
sysprep.inf with the name, domain and static IP address of the server. The 
deployment agent is told to reboot. 

6) The destination server boots into the O/S on the hard disk. This goes through mini- 
setup, and then reboots again. 

7) The administrative agent on the destination server is told to run an unattended setup 
of a number of required hotfixes, then for an application required on this server. 

8) Finally, the seq uence emails the operator to say that the server is now up and 
running. 

3.2 DEPLOYING NEW SERVERS - DISK-BASED PREOS 

Assumptions: controller and IDS installed. DHCP or BOOTP servers are available. 

Device has a boot partition that contains a pre-O/S which includes the ADS agent. This might . 

be created in the lab when the device arrives, or might have been laid down by the vendor. It f Comment [CN2J: oV might be on a floppy or" ' 
can be on the hard disk, or on a boot CD. [cd. 

1) New server is powered on. 

2) Server boots into the pre-O/S and obtains an IP address through DHCP or BOOTP. 
The controller already has a record for this server, pre-created by the administrator, 
and associated with a task sequence to be run. This sequence contains the following 
steps. 

3) An image is downloaded from an IDS server. 

4) The name, domain and static IP address is set on the newly downloaded image 

5) The destination server reboots.. 



MICROSOFT CONFIDENTIAL. ©2001 Microsoft Corporation. All rights reserved. 

By us ng or providing feedback on those materials, you agree to <re attached license agreement (also avalaHe at 
httpi/AAwv.microscAcorryiicensinc/specs^agmitOl.asp). 

I 2039g8.rXX»OC0MBNW,Ty^ : : ur«,Sis^,ifyi::.| WWAOS FUNCTIO m i i ' O V B R V K W BQSLAST SAVED: 201200 3 ■ C- :o rt&».;003 -2.^<)M<W8q03m4aWW»OCTO!e 1:31 PM 1 






6) The device boots into the O/S on the hard disk. This goes through mini-setup, and 
then reboots again. 



7) The administrative agent on the destination server is told to run an unattended setup 
of a number of required hotfixes, then for an application required on this server. 



8) Finally, the sequence emails the operator to say that the server is now up and 
running. 



3.3 ADDITIONAL SCENARIOS ANTICIPATED 

3.3.1 Installing Hotfixes and Service Packs 

Administrator will be able to use the ADS scripting framework and a set of delivered scripts 
to automate the remote installation of hotfixes and service packs. 



In use, the administrator might determine that additional ADS capacity is required. This could 
be because existing servers are overloaded (e.g. too many PXE boot request for the NBS) or 
because the sizing limits are being exceeded (e.g. too many devices for one controller to 
support). 

So the administrator might need to add additional IDS or NBS systems. 

4.1 ADDING IMAGE SERVERS 

If IDS systems become a bottleneck the administrator will want to add image servers. The 
administrator will need to install a second controller and associate the new image server to the 
controller. 

4.2 ADDING NBS 

An NBS is required per DHCP domain. 

4.3 ADDING CONTROLLER 

In this version, controllers do not know anything about other controllers on the network. 
Effectively they are independent of each other. 

However the administrator could add additional controller capacity being logically partitioning 
the devices between two or more controllers, or creating a hierarchy of controllers. 

■ Device Partitioning 

The administrator would define some devices as being controlled by one controller, and 
other devices as being controlled by a different controller. This is purely a logical division, 
that the administrator would implement by the act of taking control of devices from a 
particular controller (they would also need to place the correct certificate on the device OS, 
which might require them to create an image per controller, or insert the certificate from 
the pre-OS phase. 
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Note that in pre-OS, any controller that has the correct certificate would be able to control 
the device during the pre-OS phase. This might be a different controller than the one that 
can control it in target OS, which would cause problems in task sequences, which run on a 
particular controller. 

The NBS systems would have to be configured to forward boot action requests to the 
correct controller. This means that devices would have to be partitioned based on which 
NBS supports them. All the devices that boot via a particular NBS server would have to be 
controlled by the same controller. This is not typically a problem, since NBS systems 
usually support a smaller number of devices than a controller. 

Note that if auto-creation of discovery records is enabled, all controllers will create records 
for all devices. 



The user now has to go to the correct controller to perform operations. Operations on 
devices that are controlled by different controllers are more complex. 

■ Ad-hoc Controller Hierarchy 

The controller software does not understand a controller hierarchy. However the 
administrator could build an ad-hoc hierarchy. They would first start by partitioning the 
devices, as described above, into multiple controllers. Then they would create another 
controller, to be the "parent" of the individual controllers. They would also install the agent 
software on the individual controllers. Now scripts can be run from the parent controller 
against the individual controllers. These scripts could themselves invoke operations 
against one or more devices on the controllers. 



The following upgrade scenarios are supported. 
On the agent: 

■ Existing target server running W2K and the Add-on Pack agent, upgraded by uninstaliing 
the SAK, , upgrading to .NET server, then installing the ADS administration agent 

On the controller 

■ Controller running W2K, SAK 2.01 and Add-on Pack controller, by saving the database 
state to a file, uninstaliing the AoP and SAK, then upgrading to .NET Server, then 
installing the ADS controller with the same database (which should make use of the 
existing database, upgrading it as necessary). 

There is also controller migration: 

■ Migrate data from existing controller running W2K, SAK 2.01 and Add-on Pack controller 
to a new controller running .NET Server and ADS controller. 



| Both Deployment Agent and Administration Agent 
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BMon 


[deprecated term] the basis for the Deployment Agent (see Deployment 


BMon Builder 


[deprecated term] replaced by Deployment Agent Builder service 


BMSS 


[deprecated term] part of the Deployment Agent and Administration Agent 


Contraller 


The computer system that runs the controller service, and optionally also 
the Network Boot services and Image Distribution service. 


Controller servioe 


Software that implements controller functionality (including autodiscovery, 
BMSS, Win32 agent service, MSXML, etc). 


Deployment Agent 


Software delivered over the network after a PXE boot to the memory of a 
(argot server and that then accepts operations from the controller 
(comprises BMon, BMSS and various native mode tools) 


Deployment Agent Builder 


Service that creates a customized Deployment Agent based on the 
hardware on the Target Server 


Device 


One of the computer systems or other types of hardware in a datacenter. 
ADS version 1 only works with computer systems. 


Production OS 


An operating system installed for the purpose of doing useful work (for 
example, acting as a Web server or Exchange server). Contrast with a 


ADS PXE service 


ADS's implementation of a PXE service 


Image Distribution service 


service that receives and sends image files 


Image store 


computer that runs the Image Distribution service 


Job 


The running of a job template on a single device or a set 


Management OS 


An operating system used to manage or service the computer system, such 

be based on various operating systems (such as WinPE or .NET Server), 
but (for the purposes of ADS) must include the Administration Agent. 


MDM 


[deprecated tenm] see Multiple Device Management 


Multiple Device 
Management 


[deprecated term] remote execution of tasks on one or more target servers 


Network Boot Services 


in n of ADS PXE at e and Deployment f tut' i ler s r\ 


Operation 


An action that is one of the following: script download, device program, 
controller program, device internal operation, controller internal operation 


Pre-OS 


often used to mean either the Deployment Agent or Management OS; 
sometimes used to mean specifically 'BMon' OS. 


PXE service 


see ADS PXE service 


Set 


A collection of one or more Devices 




see Full OS 


Target Server 


a computer system that can be managed by the ADS system 


Task Sequence (or 
Sequence) 


A sequence of steps, each of which can be an Operation or a Task 


Full OS 


See Production OS 
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